3dcart
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill relies on the
membraneCLI tool for all operations, including login, connection management, and the execution of API actions against the 3dcart service.\n- [EXTERNAL_DOWNLOADS]: The instructions guide users to install the@membranehq/clipackage from the NPM registry to enable interaction with the Membrane platform.\n- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection attack surface as it processes external data from 3dcart and allows for the dynamic creation of actions based on natural language descriptions.\n - Ingestion points: Data retrieved from the 3dcart API via
membrane action listandmembrane action runcommands.\n - Boundary markers: Absent; there are no specific instructions for the agent to treat external tool outputs as untrusted or to ignore instructions within that data.\n
- Capability inventory: The agent has the ability to execute shell commands using the
membraneCLI tool.\n - Sanitization: Absent; the skill does not define any methods for validating or sanitizing external data before it is processed.
Audit Metadata