Skills
skills/membranedev/application-skills/equensworldline/Gen Agent Trust Hub

equensworldline

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli package from the npm registry and uses npx to execute commands, which downloads code at runtime.
  • [COMMAND_EXECUTION]: The core functionality of the skill relies on executing shell commands via the membrane CLI for authentication (membrane login), connection management (membrane connect), and action execution (membrane action run).
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because it ingests data from the EquensWorldline API and interpolates it into the agent's context.
  • Ingestion points: Output from the membrane action run command in SKILL.md.
  • Boundary markers: None identified in the provided instructions to separate external data from system instructions.
  • Capability inventory: The skill has the capability to execute shell commands and interact with financial data via the Membrane CLI.
  • Sanitization: There is no mention of sanitizing or validating the output from the EquensWorldline API before processing it.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 04:49 PM