iris-cascade
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm. This is the official command-line tool provided by the vendor (Membrane) to manage its integrations. - [COMMAND_EXECUTION]: The instructions involve running various
membraneCLI commands (e.g.,login,connect,action run,request). These are standard operations for the tool's intended purpose of interacting with the IRIS Cascade API. - [CREDENTIALS_UNSAFE]: The skill explicitly follows security best practices by advising against asking users for API keys or tokens, instead utilizing Membrane's server-side connection management to handle the authentication lifecycle securely.
Audit Metadata