nebula
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill serves as a comprehensive integration guide for the Nebula memory platform, and all documented behaviors align with its stated purpose.
- [EXTERNAL_DOWNLOADS]: The documentation references official vendor packages nebula-client (Python) and @nebula-ai/sdk (Node.js). These are legitimate libraries provided by the developer for interacting with the service.
- [REMOTE_CODE_EXECUTION]: Provides instructions for connecting to the official Nebula MCP server using the mcp-remote utility. This is a standard integration method using vendor-controlled infrastructure.
- [COMMAND_EXECUTION]: Includes standard package management commands (pip install, npm install) and configuration steps for AI assistant environments like Cursor and VS Code.
- [CREDENTIALS_UNSAFE]: Example code and configuration templates use placeholder strings for API keys (e.g., 'your-api-key', 'YOUR_API_KEY'), following standard documentation security practices.
Audit Metadata