gitpod
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the npm registry. This is the official tool provided by the vendor for interacting with their platform. - [COMMAND_EXECUTION]: Various commands using the
membraneCLI are documented to perform authentication, connection management, and action execution. These are standard operations within the vendor's ecosystem. - [CREDENTIALS_UNSAFE]: The skill promotes secure authentication by explicitly advising against asking users for API keys, utilizing Membrane's server-side credential management instead.
Audit Metadata