Proxycurl

Installing a global CLI gives that package code execution on the user's machine during installation and use.

The skill instructs users to install a global CLI package, and later references npx @membranehq/cli@latest. This is central to the stated Membrane integration, but users should verify the package and source before installing.

Requests made through the skill may use the user's connected Proxycurl/Membrane account and may consume account credits or access account-scoped data.

The skill relies on Membrane-managed authentication and credential refresh for the user's Proxycurl connection. This is expected for the integration, but it means actions run with the authority of that connected account.

If used carelessly, raw requests could call unintended endpoints, consume credits, or perform account-affecting operations supported by the API.

The skill documents a raw proxy request fallback, including HTTP methods such as GET, POST, PUT, PATCH, and DELETE, with authentication headers injected by Membrane. This is a broad but disclosed API escape hatch for cases where pre-built actions do not cover the user request.

The skill may retrieve or process personal profile, email, and phone information from an external provider.

The skill can query third-party personal or professional contact data through Proxycurl via Membrane. This is aligned with the stated Proxycurl purpose, but users should treat those provider data flows as sensitive.