pdfmonkey
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install and use the
@membranehq/clipackage from the official npm registry. This is the vendor's own tool and is used for its intended purpose of platform integration. - [COMMAND_EXECUTION]: The skill uses shell commands via the
membraneCLI to perform actions such as searching for connectors, connecting to accounts, and running API actions. These operations are scoped to the user's authenticated Membrane session. - [SAFE]: The skill implements a secure-by-design approach for authentication by using the platform's native login and connection flow, which avoids the exposure of API keys or sensitive credentials in the prompt or code.
- [SAFE]: The interaction with external data from PDFMonkey is performed through a proxy mechanism that automatically handles authorization headers and path construction, reducing the risk of manual implementation errors.
Audit Metadata