grafbase
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation recommends installing the
@membranehq/clipackage globally via npm. This is a standard procedure for using the vendor's platform tools. - [COMMAND_EXECUTION]: The skill facilitates interaction with the Grafbase API by executing shell commands through the
membraneCLI. This includes commands for authentication (membrane login), resource searching (membrane search), and executing GraphQL operations (membrane action run). - [SAFE]: No malicious patterns such as credential exfiltration, prompt injection, or obfuscation were detected. All external resources and tools originate from the official vendor or well-known package registries.
Audit Metadata