Skills
skills/membranedev/application-skills/ifood/Gen Agent Trust Hub

ifood

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the membrane CLI to interact with iFood services, including listing connections, searching for actions, and executing data operations.
  • [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli package from the NPM registry. This is a legitimate vendor resource provided by the author to facilitate the integration.
  • [PROMPT_INJECTION]: The skill represents a surface for indirect prompt injection (Category 8) as it processes data returned from the iFood API.
  • Ingestion points: Data enters the context through membrane action list and membrane action run outputs.
  • Boundary markers: None explicitly defined in the instructions for tool output handling.
  • Capability inventory: The skill has the ability to execute shell commands (membrane) and install packages (npm).
  • Sanitization: No explicit sanitization of external iFood data is mentioned before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 06:50 PM