usercom
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes the
@membranehq/clipackage from the NPM registry. This is the official command-line tool for the Membrane platform, which the skill uses to facilitate the User.com integration. - [COMMAND_EXECUTION]: The skill invokes various
membraneCLI commands to authenticate users, discover available actions, and execute requests against the User.com API. These commands are used as intended for connection management and data interaction. - [DATA_EXFILTRATION]: No unauthorized data transfer was detected. The skill interacts with User.com through the Membrane proxy, which automatically handles authentication headers and credential refreshes server-side, preventing API keys from being exposed in the agent's environment.
Audit Metadata