Skills
skills/membranedev/application-skills/formdesk/Gen Agent Trust Hub

formdesk

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package from the npm registry. This is an official command-line tool provided by the vendor to facilitate the integration and manage authentication.
  • [COMMAND_EXECUTION]: The skill utilizes the membrane CLI to perform operations such as authentication, service connection, and action execution. These commands are part of the intended functionality for interacting with the Membrane platform.
  • [PROMPT_INJECTION]: The skill is designed to process data retrieved from Formdesk, such as form results and user lists. This creates a surface for indirect prompt injection if the external data contains malicious instructions.
  • Ingestion points: Data enters the context via the output of membrane action run and membrane action list commands.
  • Boundary markers: The skill does not explicitly define delimiters or instructions for the agent to ignore potentially embedded commands within the retrieved data.
  • Capability inventory: The agent has the capability to execute membrane CLI commands, including creating and running new actions.
  • Sanitization: There is no evidence of explicit sanitization or filtering of the content retrieved from the Formdesk API.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 11:07 PM