regal
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the public npm registry. This is the official command-line interface provided by the platform vendor (membranedev) to facilitate integration services. - [COMMAND_EXECUTION]: The instructions leverage the
membraneCLI for platform-level tasks, including user authentication (membrane login), establishing service connections (membrane connect), and executing pre-built or dynamically generated actions (membrane action run). These are standard operations within the intended scope of the skill. - [DATA_EXFILTRATION]: The skill interacts with external data from the Regal platform. However, it follows security best practices by utilizing Membrane to manage the authentication lifecycle server-side, which prevents the exposure or local storage of sensitive API keys or tokens.
Audit Metadata