salesforce
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to manage Salesforce records and workflows. These commands are restricted to the functionality of the Membrane platform. - [EXTERNAL_DOWNLOADS]: The skill directs the user to install
@membranehq/clifrom the official npm registry. This is a legitimate tool provided by the vendor (membranedev) for interacting with their service. - [CREDENTIALS_UNSAFE]: No hardcoded credentials or unsafe secret handling practices were found. The skill explicitly instructs users to use the platform's connection management system, which handles OAuth flows and token refreshing securely on the server side.
Audit Metadata