ironclad
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the official Membrane CLI package (@membranehq/cli) from the public npm registry. This is a standard and expected dependency for the service's integration framework.
- [COMMAND_EXECUTION]: The skill uses shell commands to invoke the membrane CLI for managing connections, searching for available actions, and executing API requests. These operations are scoped to the intended functionality of interacting with the Ironclad platform.
- [DATA_EXPOSURE]: The skill demonstrates a strong security posture by advising against the collection of API keys or tokens from users. Instead, it utilizes a managed connection system where authentication is handled server-side, reducing the risk of local credential exposure.
Audit Metadata