commercetools
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from the public NPM registry. This tool is the official CLI for the Membrane platform, which is the vendor of this skill. - [COMMAND_EXECUTION]: The instructions utilize the
membraneCLI to manage connections and execute actions. These commands are used for legitimate integration purposes such as authentication (membrane login) and API interaction (membrane action run). - [PROMPT_INJECTION]: The skill represents a surface for indirect prompt injection because it processes data returned from external Commercetools API calls.
- Ingestion points: Data enters the context via the output of
membrane action runandmembrane action list(SKILL.md). - Boundary markers: No specific delimiters or warnings are used to wrap external data outputs.
- Capability inventory: The skill can execute subprocesses via the
membraneCLI and perform network operations through the platform's connectors. - Sanitization: No explicit sanitization or validation of the Commercetools API response is described before the agent processes the data.
Audit Metadata