tettra
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@membranehq/clipackage from the npm registry. This is a vendor-owned tool required for the skill to interact with the Membrane platform. - [COMMAND_EXECUTION]: Uses the
membraneCLI to execute various commands for searching, connecting, and running actions. These are legitimate operations for the skill's stated purpose of Tettra integration. - [CREDENTIALS_UNSAFE]: Employs best practices for secret management by utilizing Membrane's server-side connection system. This eliminates the need for hardcoded API keys and prevents the agent from asking the user for sensitive credentials.
Audit Metadata