vanta
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line interface to perform operations such as listing connections, searching for Vanta actions, and executing API requests. These commands are standard for the intended integration logic. - [EXTERNAL_DOWNLOADS]: The instructions include the installation of the
@membranehq/clipackage via npm. This package is an official tool from the skill's author used to facilitate communication with the Membrane platform. - [SAFE]: The skill explicitly implements secure credential management by advising the agent to never ask the user for API keys, instead relying on Membrane's server-side authentication lifecycle.
Audit Metadata