currencyapi
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from NPM. This is the official CLI tool provided by the skill's vendor (Membrane) and is required for the integration logic. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform various operations, including authentication (membrane login), connecting to external services (membrane connect), and executing API actions (membrane action run). These commands are standard for the intended use case of the platform. - [PROMPT_INJECTION]: An indirect prompt injection surface is identified where user-supplied queries are passed to the
membrane action listcommand via the--intentflag and JSON parameters are passed tomembrane action run. - Ingestion points: User input is interpolated into the
--intentand--inputflags inSKILL.md. - Boundary markers: None explicitly defined in the CLI command examples.
- Capability inventory: The skill can perform network operations and authenticate to services via the
membraneCLI. - Sanitization: None described within the skill instructions, relying on the CLI and agent's internal handling.
Audit Metadata