pulumi
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends the installation of the
@membranehq/clipackage from npm, which is the official command-line interface provided by the vendor for secure infrastructure management.\n- [COMMAND_EXECUTION]: It provides instructions for runningmembranecommands to authenticate, search for resources, and interact with the Pulumi service, which are standard operations for this integration.\n- [DATA_EXFILTRATION]: The skill explicitly advises using Membrane connections to manage authentication, which prevents the need for hardcoding secrets or exposing API keys directly within the agent instructions or local environment.
Audit Metadata