clerk
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill integrates with Clerk using the vendor's official CLI tool (@membranehq/cli). This is a safe and expected dependency from the developer, ensuring that authentication lifecycles and secrets are managed by the platform rather than handled locally.- [COMMAND_EXECUTION]: All Clerk API operations are conducted through the Membrane CLI, ensuring a secure and standardized communication path via the platform's proxy and pre-defined actions.- [PROMPT_INJECTION]: The skill interacts with external Clerk data, presenting a standard indirect prompt injection surface. 1. Ingestion points: Clerk API responses via CLI output. 2. Boundary markers: The --json flag is used for structured data. 3. Capability inventory: CLI commands for managing user and organization resources. 4. Sanitization: Handled by the agent's internal processing of CLI outputs. This follows standard integration patterns for processing external data.
Audit Metadata