ready2order
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill leverages the Membrane CLI (@membranehq/cli) for all interactions with the Ready2order API. This architecture is secure as it ensures the AI agent never handles sensitive API keys or OAuth tokens directly, preventing potential credential exposure.
- [COMMAND_EXECUTION]: The skill provides instructions for the agent to run
membraneCLI commands. These operations are scoped to discovering actions, connecting accounts, and running predefined integration logic, which is consistent with the skill's stated purpose. - [EXTERNAL_DOWNLOADS]: The skill references the installation of the
@membranehq/clipackage from the official npm registry. This is a legitimate and expected dependency authored by the same vendor as the skill. - [PROMPT_INJECTION]: No evidence of prompt injection, instruction overrides, or safety bypass patterns was found within the skill instructions or metadata.
Audit Metadata