ispring-learn
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm, which is a standard procedure for this vendor's tooling. - [COMMAND_EXECUTION]: The skill utilizes several shell commands via the
membraneCLI to perform administrative tasks, such asmembrane login,membrane connect, andmembrane action run. These are used for legitimate interaction with the iSpring Learn platform. - [DATA_EXFILTRATION]: The skill facilitates data movement between the local environment and the iSpring Learn API through the
membrane requestproxy. This is the intended purpose of the integration and is handled through authenticated channels managed by the CLI tool.
Audit Metadata