missive
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the npm registry, which is a resource owned by the vendor to facilitate platform interactions. - [COMMAND_EXECUTION]: Uses the
membranecommand-line tool to perform searches, manage connections, and execute API actions. These operations are restricted to the functionality provided by the official vendor CLI. - [CREDENTIALS_UNSAFE]: The skill adheres to security best practices by explicitly directing the agent to use managed connections rather than asking for or hardcoding API keys or tokens.
Audit Metadata