grouparoo
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to install and use the
@membranehq/cliglobal package to interact with the Grouparoo platform. - [INDIRECT_PROMPT_INJECTION]: The skill provides a surface for indirect prompt injection as it retrieves and processes data from Grouparoo records and actions.
- Ingestion points: External data entered via
membrane action runoutputs. - Boundary markers: None explicitly defined in the instructions.
- Capability inventory: Subprocess execution of the
membraneCLI. - Sanitization: Relies on the underlying agent's interpretation of tool outputs.
- [DYNAMIC_EXECUTION]: The skill utilizes the Membrane platform's capability to dynamically generate and build actions based on natural language descriptions provided to the
membrane action createcommand.
Audit Metadata