commandbar
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli package, the official command-line interface for the Membrane platform.
- [COMMAND_EXECUTION]: The skill provides numerous shell commands for the membrane CLI to handle authentication and execute data-driven workflows.
- [PROMPT_INJECTION]: The skill processes untrusted data from external sources, presenting an indirect prompt injection surface.
- Ingestion points: Data retrieved via CLI output from action list and action run commands in SKILL.md.
- Boundary markers: Absent; no specific markers are provided to separate external content from agent instructions.
- Capability inventory: The skill can execute shell commands, search for actions, and create new automated workflows via the CLI.
- Sanitization: No sanitization or validation of the external API responses is implemented.
Audit Metadata