postalytics
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from npm. This is a legitimate utility provided by the vendor (Membrane) to manage integrations. - [COMMAND_EXECUTION]: The skill utilizes shell commands through the
membraneCLI to perform administrative tasks such as logging in, searching for connectors, and executing API actions. These operations are standard for the intended functionality of the skill. - [DATA_EXFILTRATION]: No patterns of unauthorized data access or exfiltration were found. The skill emphasizes using the vendor's managed connection system to handle authentication, which avoids exposing API keys or tokens in the local environment.
Audit Metadata