bombora
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI (installed via@membranehq/cli) to perform B2B intent data operations. These commands are part of the platform's standard operating procedure for managing connections and executing actions. - [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the official NPM registry. This package is owned by the skill vendor and is required for the integration to function. - [DATA_EXFILTRATION]: No evidence of unauthorized data exfiltration was found. The skill uses a proxy mechanism (
membrane request) that routes API calls through the vendor's infrastructure, which handles authentication headers and credential management server-side.
Audit Metadata