weglot
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructions include installing the
@membranehq/clipackage from the public npm registry. This is a standard procedure for using the vendor's tooling. - [COMMAND_EXECUTION]: The skill guides the agent to perform operations via shell commands using the
membraneCLI, such asmembrane action runandmembrane request. These commands are used to interact with the Weglot API through the vendor's proxy. - [CREDENTIALS_UNSAFE]: The skill follows security best practices by delegating authentication to the Membrane platform. It explicitly instructs the agent not to ask for or store API keys locally, using managed connections instead.
Audit Metadata