xata
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends the installation of the
@membranehq/clipackage via npm. This is the official command-line interface provided by the skill's author for interacting with their platform. - [COMMAND_EXECUTION]: Instructs the agent on using CLI commands to search for connectors, manage connections, and execute actions. These operations are within the scope of the skill's primary purpose for data management.
- [CREDENTIALS_UNSAFE]: The skill explicitly advises against asking users for API keys or secrets, utilizing a managed connection system that handles authentication and token refresh server-side.
- [DATA_EXFILTRATION]: Uses a proxy request mechanism (
membrane request) to communicate with the Xata API. This system is designed to inject authentication headers and handle data transit through the vendor's infrastructure as part of the integration.
Audit Metadata