kotive
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the installation of the
@membranehq/clitool from the official NPM registry. This is a standard developer tool provided by the vendor to facilitate API interactions and connection management. - [COMMAND_EXECUTION]: Instructions guide the agent to use the
membraneCLI for querying actions and managing data within Kotive. These operations are scoped to the authenticated user's environment and use the platform's standard command set. - [CREDENTIALS_UNSAFE]: The skill explicitly instructs against asking users for API keys or tokens. It utilizes a secure 'connection' model where authentication is handled server-side by the Membrane platform, reducing the risk of local credential exposure.
- [DATA_EXFILTRATION]: No unauthorized data transmission patterns were detected. Network operations are directed through the vendor's proxy which handles authentication and target endpoint management securely.
Audit Metadata