Skills
skills/membranedev/application-skills/cinc/Gen Agent Trust Hub

cinc

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the official Membrane command-line tool.
  • Evidence: npm install -g @membranehq/cli is used to install the vendor-specific utility from the NPM registry.
  • [COMMAND_EXECUTION]: The skill uses local shell commands to interact with the CINC API via the Membrane abstraction layer.
  • Evidence: Commands such as membrane login, membrane connect, and membrane action run are used for workflow automation.
  • [SAFE]: The skill design adheres to the principle of least privilege regarding credential management.
  • Evidence: The instructions explicitly state: "never ask the user for API keys or tokens. Create a connection instead; Membrane manages the full Auth lifecycle server-side with no local secrets."
  • [SAFE]: All external resources and tools identified originate from the verified author's organization (membranedev/membranehq).
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 02:53 PM