posthog
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious behavior, obfuscation, or safety bypass attempts were detected.
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of '@membranehq/cli' via NPM. This is a legitimate tool provided by the vendor (membranedev) for interacting with their platform.
- [COMMAND_EXECUTION]: The skill uses the 'membrane' CLI to perform actions and queries. These operations are restricted to the integration's defined scope and utilize the platform's secure authentication mechanism.
- [SAFE]: The skill follows security best practices by using managed authentication instead of requiring users to provide sensitive API keys directly.
- [SAFE]: The skill processes external analytics data, creating a standard surface for indirect prompt injection, but it does not exhibit any malicious patterns and follows secure implementation guidelines.
Audit Metadata