cobalt-io
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the official NPM registry. This package is an official tool provided by the vendor (membranedev) to facilitate secure integrations. - [COMMAND_EXECUTION]: Various
membraneCLI commands are used to manage authentication, search for connectors, and execute API actions. These commands are intended functionality for the Membrane platform and do not perform unauthorized or hidden operations. - [CREDENTIALS_UNSAFE]: The skill correctly implements security best practices by advising against manual API key entry. Instead, it utilizes Membrane's managed authentication flow, which handles credential lifecycle and storage on the platform side.
Audit Metadata