aivie
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the official npm registry. This is a standard global installation of the vendor's command-line tool. - [COMMAND_EXECUTION]: The skill utilizes several
membraneCLI commands (e.g.,membrane login,membrane action list,membrane action run) to interact with the platform. These are standard operations for the tool's intended purpose. - [INDIRECT_PROMPT_INJECTION]: The skill contains surfaces where untrusted data (user-provided intents or action descriptions) are interpolated into shell command arguments.
- Ingestion points: User-provided query strings in the
SKILL.mdinstructions formembrane action list --intent "QUERY"andmembrane action create "DESCRIPTION". - Boundary markers: None; parameters are passed as plain string arguments within shell commands.
- Capability inventory: The skill executes shell commands via the CLI to list, create, and run actions.
- Sanitization: No explicit sanitization or escaping is mentioned in the instructions for the agent.
Audit Metadata