clicktime
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is authored by the platform vendor (Membrane) and uses its official CLI tool for ClickTime integration.
- [EXTERNAL_DOWNLOADS]: The skill references the installation of the
@membranehq/clipackage from the official NPM registry, which is the standard method for utilizing the vendor's platform capabilities. - [CREDENTIALS_UNSAFE]: No hardcoded secrets or API keys are present. The skill explicitly promotes secure credential management through Membrane's authentication system rather than local storage.
- [COMMAND_EXECUTION]: All shell commands described are standard operations for the
membraneCLI intended to facilitate legitimate project management tasks, such as querying tasks and creating time entries.
Audit Metadata