uberduck
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the
@membranehq/cliglobal package from the npm registry. This utility is a standard tool provided by the platform for managing integrations. - [COMMAND_EXECUTION]: Executes shell commands via the
membraneCLI to manage connections, discover actions, and run tasks. These operations are the primary mechanism for the skill to interact with the Uberduck API. - [DATA_EXFILTRATION]: Utilizes the Membrane platform's proxy for API requests, which manages authentication server-side. This design prevents sensitive credentials like API keys or tokens from being handled directly by the AI agent or stored in the local file system.
Audit Metadata