rapidoc
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from npm. This is a vendor-owned tool (membranedev) required for the skill to interact with the Membrane platform. - [COMMAND_EXECUTION]: The skill uses various
membraneCLI commands (e.g.,membrane connect,membrane action run) to manage RapiDoc integrations. These commands are part of the platform's standard operational workflow and are used as intended for service integration. - [CREDENTIALS_UNSAFE]: The skill correctly avoids hardcoding credentials and explicitly instructs the user not to provide API keys directly, utilizing Membrane's built-in authentication handling instead.
- [DATA_EXFILTRATION]: No patterns of unauthorized data exfiltration were detected. Network operations are limited to the vendor's CLI and the RapiDoc API endpoints via the platform's proxy.
Audit Metadata