demio
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill relies on the
membraneCLI to perform operations such as authentication, action discovery, and running webinar-related tasks. These commands are the intended method for interacting with the vendor's platform. - [EXTERNAL_DOWNLOADS]: The instructions direct the user to install the
@membranehq/clipackage from npm. This is the official command-line interface provided by the vendor (Membrane) and is required to facilitate the integration. - [PROMPT_INJECTION]: The skill processes data from external API responses (e.g., registrant names, event details) which are returned via CLI commands. While this is a standard integration surface, it represents a potential point for indirect prompt injection if those responses contain instructions intended to influence the agent.
- Ingestion points: Output from
membrane action listandmembrane action runas described in SKILL.md. - Boundary markers: No explicit delimiters are suggested in the example commands for handling remote data.
- Capability inventory: The agent can execute system commands through the
membraneCLI. - Sanitization: Sanitization of API outputs is not explicitly detailed in the integration instructions.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys or secrets are present. The skill correctly utilizes the
membrane loginandmembrane connectworkflows, which manage authentication tokens server-side or via local secure storage.
Audit Metadata