docsumo
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from npm. This is a standard command-line utility provided by the vendor to facilitate service integrations. - [COMMAND_EXECUTION]: The skill uses the
membraneCLI to perform tasks such as authentication (membrane login), establishing connections (membrane connect), and executing API actions (membrane action run). These commands are restricted to the vendor's orchestration environment. - [DATA_EXFILTRATION]: No evidence of unauthorized data transfer was found. The skill explicitly directs the agent to avoid asking users for API keys or tokens, instead utilizing a server-side connection model that keeps credentials secure.
- [PROMPT_INJECTION]: The instructions are focused on functional integration logic and do not contain patterns designed to bypass agent safety filters or override system instructions.
Audit Metadata