jumio
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official Membrane CLI (@membranehq/cli) for managing authentication and executing API requests. This approach centralizes sensitive credential handling on the Membrane platform rather than storing them in local environment files or hardcoding them in scripts, which aligns with security best practices.
- [SAFE]: While the skill interacts with external data through Jumio and the Membrane proxy, all operations are initiated through explicit user-authorized connections. The architecture limits exposure to indirect prompt injection by using structured action schemas for data processing.
- [SAFE]: All external resources, including the CLI tool and the repository, originate from the verified vendor 'membranedev', presenting no indications of typosquatting or malicious supply chain risk.
Audit Metadata