Skills
skills/membranedev/application-skills/gigalixir/Gen Agent Trust Hub

gigalixir

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install @membranehq/cli globally via npm. This is the official command-line tool for the Membrane platform.\n- [COMMAND_EXECUTION]: The skill utilizes several shell commands to interact with the membrane CLI for authentication, connection management, and executing actions.\n- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface where it incorporates user-supplied strings into CLI command arguments (e.g., --intent \"QUERY\" and action create \"DESCRIPTION\").\n
  • Ingestion points: Shell command arguments in SKILL.md.\n
  • Boundary markers: None observed in the provided command templates.\n
  • Capability inventory: File system interactions and network requests via membrane action run.\n
  • Sanitization: No sanitization logic is visible in the instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 05:38 PM