idealspot
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage via NPM, which is the official tool provided by the vendor for platform interaction. - [COMMAND_EXECUTION]: The skill uses shell commands (via the
membraneCLI) to discover actions and interact with the IdealSpot API. This is the intended primary function of the skill. - [SAFE]: Authentication is handled through a secure OAuth-style flow (
membrane loginandmembrane connect), ensuring that sensitive credentials like API keys are managed by the platform rather than being hardcoded or requested directly from the user.
Audit Metadata