stripe
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install the
@membranehq/clinpm package, which is a trusted tool provided by the vendor (membranedev) for interacting with their platform. - [COMMAND_EXECUTION]: The skill makes extensive use of the
membraneCLI to search for connectors, manage connections, and execute Stripe actions. These commands are consistent with the skill's stated purpose. - [SAFE]: No malicious patterns, such as prompt injection, credential exfiltration, or code obfuscation, were detected. The skill follows security best practices by using the vendor's proxy for API requests and avoiding local storage of secrets.
Audit Metadata