teamwork-desk
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the public npm registry. This is the official command-line interface provided by the skill's authoring organization. - [COMMAND_EXECUTION]: The skill uses shell commands to interact with the Membrane CLI. This includes authenticating (
membrane login), connecting to services (membrane connect), and executing predefined actions (membrane action run). These commands are standard for the platform's operation. - [CREDENTIALS_SAFE]: No hardcoded secrets or API keys are present. The skill correctly directs users to use the platform's connection management system, which handles OAuth flows and token storage securely on the server side.
- [DATA_EXFILTRATION]: All data access and manipulation are performed through the official Membrane infrastructure. No suspicious third-party domains or unauthorized data transfer patterns were detected.
Audit Metadata