workable
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI from a well-known service (NPM). This is a standard installation procedure for the service provider's official tooling.
- [COMMAND_EXECUTION]: The skill uses the
membranecommand-line tool to manage connections, discover actions, and execute integration tasks. These commands are scoped to the intended functionality of managing Workable data and do not perform unauthorized system modifications. - [CREDENTIALS_UNSAFE]: The skill explicitly adheres to security best practices by instructing the agent never to ask for API keys. It offloads credential management to the Membrane platform, ensuring secrets are not stored in the agent's environment or hardcoded in scripts.
- [DATA_EXFILTRATION]: While the skill interacts with recruitment data (Candidates, Jobs, Departments), all network operations are performed through the service provider's infrastructure. No unauthorized data exfiltration patterns were detected.
Audit Metadata