lightspeed-ecom
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the npm registry. This is a vendor-owned resource required for the skill to function correctly and is used to facilitate interaction with the Membrane platform. - [COMMAND_EXECUTION]: The instructions utilize the Membrane CLI to authenticate and execute actions against the Lightspeed eCom API. These commands are transparently documented and align with the skill's stated purpose of managing e-commerce data.
- [SAFE]: The skill explicitly advises the agent not to request user credentials directly, instead leveraging a secure server-side connection process that manages the authentication lifecycle without exposing secrets in the local environment.
Audit Metadata