recorded-future
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm. This is a standard installation of the vendor's official command-line tool required to facilitate the integration. - [COMMAND_EXECUTION]: It utilizes the
membraneCLI to manage the lifecycle of the integration, including authentication (login), connection management (connect), and executing API actions (action run). These commands are standard for the platform's operation. - [DATA_EXFILTRATION]: The skill retrieves threat intelligence data from Recorded Future via the Membrane proxy. It specifically advises against asking users for API keys, instead relying on Membrane's server-side connection management to handle credentials securely.
Audit Metadata