upwave
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
membraneCLI to interact with the Upwave platform, including searching for connectors, connecting accounts, and running actions. These operations are performed through a managed CLI environment. - [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@membranehq/clipackage from npm, which is the official tool provided by the author to facilitate secure communication with the Upwave API. - [CREDENTIALS_UNSAFE]: No hardcoded credentials or unsafe secret handling practices were found; the skill explicitly instructs the agent to rely on the platform's managed authentication service rather than asking users for API keys.
Audit Metadata