spotdraft
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Downloads and installs the @membranehq/cli utility from the public NPM registry, which is the official tool provided by the platform author.
- [COMMAND_EXECUTION]: Executes membrane CLI commands to manage service connections and interact with the Spotdraft API. These commands are part of the core functionality for contract lifecycle management.
- [SAFE]: Employs secure authentication practices by using the Membrane platform's centralized token management, which avoids the need for hardcoded API keys or manual secret handling.
Audit Metadata