magnolia
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/cliglobal package from the npm registry and utilizesnpxto run the latest version. These are vendor-provided tools required for the skill's primary functionality. - [COMMAND_EXECUTION]: Shell commands are executed via the
membraneCLI to manage connections, list actions, and interact with the Magnolia API. All commands are standard for the tool's usage and are performed within the context of the user's intended workflow. - [DATA_EXFILTRATION]: Performs network requests to Magnolia APIs through a vendor-managed proxy. The skill emphasizes best practices by managing credentials server-side and explicitly advising against asking users for raw API keys or tokens.
Audit Metadata