codeq-natural-language-processing-api
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI package (
@membranehq/cli) from the public NPM registry. This is standard procedure for using the vendor's platform. - [COMMAND_EXECUTION]: It utilizes shell commands to interact with the Membrane CLI for logging in, creating connections, and executing API actions. These operations are scoped to the intended functionality of the integration.
- [CREDENTIALS_UNSAFE]: The skill explicitly advises against manual credential handling and instead uses a secure, delegated authentication flow (
membrane login) that avoids storing raw API keys in local scripts or environment variables.
Audit Metadata