devrev
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI (
@membranehq/cli) from the public NPM registry. This is a standard installation of the vendor's official tooling required for the skill to function.\n- [COMMAND_EXECUTION]: The skill utilizes themembranecommand-line tool to perform operations such as authentication, connection management, and running DevRev actions. These commands are local to the user's environment and interact with the vendor's platform as intended.\n- [PROMPT_INJECTION]: A potential surface for indirect prompt injection exists because the skill processes data from DevRev (such as issues, conversations, and account details). \n - Ingestion points: Data retrieved from DevRev via
membrane action runandmembrane action listcommands.\n - Boundary markers: No explicit boundary markers or instructions to ignore embedded content are provided in the skill instructions.\n
- Capability inventory: The skill can perform write operations (create/update) in DevRev and interact with the local filesystem and network via the Membrane CLI.\n
- Sanitization: There is no evidence of explicit sanitization of the retrieved data before it is presented to the agent context.
Audit Metadata