fireflies
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the official NPM registry. This is a standard installation procedure for the vendor's official tooling. - [CREDENTIALS_UNSAFE]: The skill explicitly follows best practices by advising users never to handle API keys or tokens directly. Instead, it uses a connection-based model where credentials are managed server-side by the Membrane platform.
- [COMMAND_EXECUTION]: Uses the
membraneCLI for interacting with Fireflies data. The commands provided (search,connect,action list,action run) are standard operations for the tool's intended purpose. - [DATA_EXFILTRATION]: No unauthorized data transfer patterns were detected. Network operations are routed through a managed proxy to the official Fireflies API.
- [PROMPT_INJECTION]: The instructions do not contain any patterns intended to bypass AI safety guidelines or override agent behavior.
Audit Metadata