insightly
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the Membrane CLI (
@membranehq/cli) via npm. This package is an official tool provided by the vendor for interacting with their services and managing integrations. - [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line interface to perform legitimate tasks such as authentication, searching for CRM actions, and executing API requests. These commands are standard for the platform's operational model. - [CREDENTIALS_UNSAFE]: The skill follows secure credential management practices. It instructs users to use the platform's connection system and explicitly warns against asking for or storing manual API keys or tokens.
- [DATA_EXFILTRATION]: No unauthorized data exfiltration patterns were detected. Communication with the Insightly API is conducted through a secure proxy mechanism (
membrane request) that manages authentication headers and credential refreshes server-side. - [SAFE]: The skill interacts with external data from Insightly (Organizations, Deals, Projects). While this represents a standard ingestion surface for CRM integrations, the skill uses platform-managed tools that provide a layer of abstraction between the external data and the execution environment.
Audit Metadata