microsoft-entra-id
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official Membrane CLI (
@membranehq/cli) to interact with Microsoft Entra ID. This is a legitimate tool provided by the vendor for integration purposes. - [SAFE]: Authentication is performed through
membrane login, which manages authorization tokens server-side. The skill explicitly advises against asking users for API keys or tokens, aligning with secure credential management practices. - [SAFE]: All operations, including searching, creating, and running actions, are performed through the authenticated CLI. No suspicious network activities, unauthorized file access, or obfuscated code were detected.
- [SAFE]: The skill relies on the Membrane platform to build and execute integration logic, reducing the risk of local arbitrary code execution.
Audit Metadata