ryver
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the '@membranehq/cli' package from the npm registry, which is a verified resource belonging to the skill's author organization, 'membranedev'.
- [COMMAND_EXECUTION]: The integration uses 'membrane' CLI commands to manage Ryver connections and execute actions. These commands are used as intended for service integration and do not perform suspicious or unauthorized operations.
- [SAFE]: No sensitive data, such as API keys or personal tokens, are hardcoded or exposed within the skill. Authentication is handled securely via a browser-based login flow mediated by the CLI tool.
- [SAFE]: The skill follows security best practices by utilizing a proxy service for API requests, which ensures that authentication headers and credential refreshes are managed on the server side.
Audit Metadata