turbot-pipes
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the npm registry. This is a verified tool provided by the vendor (membranedev) to facilitate communication with their integration platform. - [COMMAND_EXECUTION]: The instructions utilize the
membraneCLI to perform operations such as searching for connectors, listing actions, and running queries against the Turbot Pipes API. - [SAFE]: The skill explicitly instructs the agent to use the platform's connection management system for authentication, ensuring that sensitive tokens and credentials are not exposed to the agent or stored locally in an unsafe manner.
Audit Metadata