openlayer
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the vendor's official CLI tool (@membranehq/cli) to manage interactions with the Openlayer API. This approach is standard for the author's ecosystem and reduces security risks by automating authentication and token refreshing.
- [DATA_EXPOSURE]: The skill explicitly advises against asking users for API keys or tokens, instructing the agent to use managed connections instead. This follows the principle of least privilege and prevents sensitive credential exposure within the agent's logs or context.
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the @membranehq/cli package from the official NPM registry. This is a legitimate dependency provided by the skill's author for its intended functionality.
Audit Metadata