feathery
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from the public npm registry. This is the official tool provided by the vendor for managing integrations and handling authentication. - [COMMAND_EXECUTION]: Utilizes shell commands (via the
membraneCLI) to perform operations like logging in, connecting services, and running actions. These commands are necessary for the skill's stated purpose and follow standard vendor practices. - [PROMPT_INJECTION]: Indirect prompt injection surface identified. The skill ingests data (action names and descriptions) from an external service (Membrane). While these are part of the integration metadata, they could theoretically contain instructions intended to influence the agent.
- Ingestion points: Output from
membrane action listandmembrane action getcommands as described in SKILL.md. - Boundary markers: No delimiters or 'ignore instructions' warnings are present in the suggested command patterns.
- Capability inventory: Subprocess execution via
membrane action runcommands. - Sanitization: No explicit sanitization or validation of the action metadata is documented.
Audit Metadata