oh-dear
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI via npm (
@membranehq/cli). This is a standard installation of a well-known tool from the service provider. - [COMMAND_EXECUTION]: The instructions include various commands for the
membraneCLI to authenticate, manage connections, and execute actions. These commands are necessary for the skill's core functionality and do not involve unauthorized privilege escalation or persistence. - [CREDENTIALS_UNSAFE]: The skill adheres to security best practices by explicitly instructing the agent never to ask for API keys or tokens, instead relying on Membrane's server-side connection management to handle secrets.
Audit Metadata