getform
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the official
@membranehq/clipackage from the NPM registry. This is a vendor-owned tool required for the skill's functionality. - [COMMAND_EXECUTION]: The instructions utilize the
membraneCLI to perform various operations such as searching for connectors, connecting to accounts, and running actions. These commands are standard for the platform and are used within their intended scope. - [CREDENTIALS_UNSAFE]: The skill follows security best practices by explicitly stating that users should not provide API keys or tokens, instead relying on the platform's connection management system to handle the full authentication lifecycle.
- [DATA_EXFILTRATION]: While the skill enables data retrieval from Getform, it does so through authenticated vendor channels. There are no signs of unauthorized data transmission or access to sensitive local files.
Audit Metadata