lighton
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the Membrane CLI (
membrane) to interact with the LightOn API. Commands likemembrane action runandmembrane requestare used to perform authorized tasks and manage data flows. - [EXTERNAL_DOWNLOADS]: The skill recommends the installation of the
@membranehq/clipackage from the npm registry. This is the official command-line tool for the Membrane platform and is used for secure communication. - [CREDENTIALS_UNSAFE]: The skill follows security best practices by explicitly instructing the agent not to ask for or store API keys locally, instead delegating credential lifecycle management to the Membrane platform.
- [DATA_EXFILTRATION]: No suspicious data transfer patterns were detected. All network communication is performed through the authenticated Membrane proxy to official endpoints.
Audit Metadata