chatsonic
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli npm package globally. This package is part of the vendor's ecosystem and is used as the primary interface for the integration.
- [COMMAND_EXECUTION]: The skill uses various shell commands through the membrane CLI to manage authentication, connections, and action execution. This includes commands like membrane login, membrane connect, and membrane action run.
- [PROMPT_INJECTION]: The skill processes data from external Chatsonic actions, creating an attack surface for indirect prompt injection. Ingestion points: Output of membrane action run. Boundary markers: Absent. Capability inventory: Command execution via the membrane CLI (including action creation and running). Sanitization: No explicit sanitization or validation of the retrieved data is defined in the instructions.
Audit Metadata