customerio
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the Membrane CLI (
@membranehq/cli) to interact with Customer.io. This tool is a vendor-provided resource that centralizes API communication and authentication. - [SAFE]: Authentication is handled through a secure login flow (
membrane login), which avoids the use of hardcoded credentials or manual API key entry. The instructions explicitly state that secrets should not be requested from the user. - [SAFE]: No instances of prompt injection, data exfiltration, or obfuscated code were detected. All network operations are proxied through the authenticated CLI tool.
- [SAFE]: The external dependency installation (
npm install -g @membranehq/cli) targets an official package from the vendor's namespace.
Audit Metadata