hygraph
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the
@membranehq/cliNode.js package, which is the official tool from the skill's author for managing service integrations. - [COMMAND_EXECUTION]: Uses the
membraneCLI to interact with Hygraph via a secure proxy, handling authentication and action execution without exposing raw tokens to the agent. - [SAFE]: No malicious patterns, prompt injections, or unauthorized data access were detected. The skill specifically instructs the agent to let the platform handle credentials server-side, reducing the risk of secret leakage.
Audit Metadata