codat
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm. This is the official command-line interface for the Membrane platform, which is the author of this skill. - [COMMAND_EXECUTION]: The instructions utilize the
membraneCLI for authentication, searching for connectors, and executing API actions. This includes themembrane requestcommand, which acts as a proxy for raw HTTP requests to the Codat API. - [DATA_EXFILTRATION]: While the skill facilitates the transfer of business data (invoices, companies, etc.) between the user's environment and the Codat service via the Membrane proxy, this is the primary and intended function of the skill. Authentication is handled server-side by the platform, reducing the risk of local credential exposure.
Audit Metadata