rocketreach
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows secure design principles by using a proxy-based approach for API interactions, which mitigates the risk of credential exposure. No evidence of prompt injection, data exfiltration, or obfuscation was found.
- [EXTERNAL_DOWNLOADS]: The skill references the installation of the
@membranehq/clipackage via NPM. This is a legitimate utility provided by the vendor (membranedev) to manage integrations. - [COMMAND_EXECUTION]: Includes standard command-line instructions for the
membraneCLI to perform authenticated actions such as searching for contacts and managing connections. These operations are scoped to the intended functionality of the RocketReach service.
Audit Metadata