ghost
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill does not contain any malicious patterns, prompt injections, or obfuscated code.
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install '@membranehq/cli' via NPM. This is an official tool provided by the skill's author (membrane) and is considered a trusted vendor resource.
- [COMMAND_EXECUTION]: The skill uses the 'membrane' CLI to perform Ghost CMS operations. These commands are standard for the integration and are used within their intended functional scope.
- [CREDENTIALS_UNSAFE]: The skill demonstrates safe credential handling by advising the agent to use Membrane connections instead of asking the user for sensitive API keys or passwords.
Audit Metadata