invision-community
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install the
@membranehq/clipackage from the npm registry. This is a standard installation of the platform's official tooling required for the integration to function. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform operations such as logging in, creating connections, and executing actions against the Invision Community API. These commands are part of the intended functionality for managing the integration. - [SAFE]: The skill follows security best practices by delegating authentication to a managed platform (Membrane) rather than requesting or storing sensitive API keys directly. No evidence of prompt injection, obfuscation, or unauthorized data exfiltration was found.
Audit Metadata