swagup
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage via npm. This is a vendor-owned package used to interact with the Membrane platform. - [COMMAND_EXECUTION]: The skill provides various commands using the
membraneCLI tool to search for connectors, authenticate, and execute actions or API requests. These commands are intended for the user or agent to manage integrations through the vendor's platform. - [DATA_EXPOSURE]: The skill explicitly advises against asking users for API keys or tokens, recommending the use of Membrane's server-side connection management to handle the authentication lifecycle securely.
Audit Metadata