crowdbotics
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation guides the user to install the '@membranehq/cli' package globally via NPM. This is a legitimate vendor tool used to interact with the Membrane integration platform.
- [COMMAND_EXECUTION]: The skill utilizes several 'membrane' CLI commands (e.g., login, connect, action run, request) to manage workflows and automate data interactions with Crowdbotics. These commands are standard for the platform's operation.
- [DATA_EXFILTRATION]: No evidence of unauthorized data exfiltration was found. The skill emphasizes using Membrane's server-side connection management to handle authentication, which prevents the exposure of credentials in local environments or logs.
Audit Metadata