weweb
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the npm registry. This is a vendor-provided tool required for the skill's functionality. - [COMMAND_EXECUTION]: The skill relies on executing shell commands via the
membraneCLI to manage connections, search for actions, and execute API requests. These commands are used as intended for service integration. - [DATA_EXFILTRATION]: No unauthorized data exfiltration patterns were found. The skill uses a proxy service (Membrane) to handle authentication headers and credentials server-side, avoiding the need for local secret storage.
Audit Metadata