Skills
skills/membranedev/application-skills/ingenico-group/Gen Agent Trust Hub

ingenico-group

Pass

Audited by Gen Agent Trust Hub on May 3, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to install the @membranehq/cli package from the npm registry. This is a legitimate tool provided by the vendor for managing integrations and authentication.
  • [COMMAND_EXECUTION]: The skill executes several shell commands using the membrane CLI to perform login, connection management, action discovery, and action execution.
  • [PROMPT_INJECTION]: An indirect prompt injection surface exists as the skill ingests and processes data from external Ingenico Group actions. * Ingestion points: The output of the membrane action run command. * Boundary markers: There are no explicit delimiters or instructions to ignore embedded commands within the ingested data. * Capability inventory: The skill has access to shell command execution through the membrane and npm CLIs. * Sanitization: No sanitization or validation of the external action output is described or implemented.
Audit Metadata
Risk Level
SAFE
Analyzed
May 3, 2026, 08:53 PM