sap-c4c
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install a global Node.js package (@membranehq/cli) from the official NPM registry. This package belongs to the skill's authoring organization and is used as the primary interface for the skill's functionality.- [COMMAND_EXECUTION]: The skill uses the 'membrane' command-line tool to perform operations like authentication, searching for actions, and executing API requests to SAP C4C. These commands are part of the intended integration logic.- [DATA_EXFILTRATION]: While the skill facilitates data transfer between the agent and SAP C4C, all network operations are routed through the vendor's own platform (Membrane). This is consistent with the skill's stated purpose of providing a managed integration layer that handles authentication and API proxying.
Audit Metadata