labsmobile
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the '@membranehq/cli' package globally from npm. This is an official utility provided by the vendor (membranedev) to facilitate authentication and API requests.
- [COMMAND_EXECUTION]: The instructions involve executing various 'membrane' CLI commands. These commands are used for legitimate purposes such as user login, creating API connections, and running predefined actions like sending SMS messages.
- [SAFE]: No malicious patterns such as prompt injection, credential harvesting, or obfuscation were detected. The skill correctly offloads sensitive credential management to the Membrane platform.
- [SAFE]: All external references, including the GitHub repository and the CLI package, are associated with the verified vendor 'membranedev'.
Audit Metadata