cheddar
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via NPM. This is a legitimate tool provided by the vendor for interacting with their platform. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands (e.g.,membrane login,membrane connect,membrane action run) to manage connections and execute integration logic. These commands are standard operations for the platform's workflow. - [DATA_EXFILTRATION]: The skill facilitates access to business data (transactions, customers, invoices) from the Cheddar API. This data is handled through Membrane's proxy, which manages authentication and provides a secure interface for the agent.
Audit Metadata