breathe
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install the
@membranehq/clipackage globally via npm and usesnpxto run the latest version of the CLI. These resources are provided by the skill's author (membranedev). - [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line tool to perform various operations, including logging in, searching for connectors, managing connections, and executing actions or raw API requests. These commands are part of the intended functionality for interacting with the Membrane platform. - [DATA_EXFILTRATION]: While the skill performs network operations via the
membraneCLI, these are directed to the vendor's own infrastructure (getmembrane.com) for the purpose of API proxying and authentication management. No unauthorized data exfiltration patterns were detected.
Audit Metadata