1s2u
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally from npm. This is a vendor-owned CLI tool required for the skill's primary functionality. - [COMMAND_EXECUTION]: All interaction with the 1S2U service is performed via the
membraneCLI. This includes authentication, connection setup, and the execution of API actions. These commands are standard for the tool's usage. - [PROMPT_INJECTION]: The skill ingests data from the 1S2U API (e.g., via
membrane action run). This constitutes an attack surface for indirect prompt injection if external data contains hidden instructions. However, the skill emphasizes using the platform's managed actions which provide a layer of abstraction. - [SAFE]: The skill explicitly advises against asking users for API keys or tokens, directing them to use secure connection management instead. No obfuscation, persistence mechanisms, or unauthorized network operations were detected.
Audit Metadata