draftable
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the Membrane CLI (
@membranehq/cli@latest) from the official npm registry. This is a standard installation for the vendor's command-line tool and is considered a trusted resource for this integration. - [COMMAND_EXECUTION]: Executes the
membraneCLI for operations such as tenant login, connection management, and running document comparison actions. These commands are necessary for the platform's functionality and are constrained to the vendor's ecosystem. - [PROMPT_INJECTION]: The skill demonstrates an indirect prompt injection surface by ingesting comparison data from the Draftable API. Ingestion points: Data retrieved via
membrane action run. Boundary markers: None provided in instructions to delimit comparison content. Capability inventory: The skill usesmembranefor remote execution and connection management. Sanitization: No explicit sanitization of the comparison output is mentioned in the logic.
Audit Metadata