interzoid
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the '@membranehq/cli' package from the public npm registry. This is a vendor-provided tool required to facilitate the connection between the agent and the Interzoid service.- [COMMAND_EXECUTION]: The skill uses shell commands through the 'membrane' CLI to handle user authentication, list connections, and execute data processing actions. These commands are essential for the operation of the skill and utilize the vendor's secure infrastructure.- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection due to its core function of ingesting data from external Interzoid APIs.
- Ingestion points: Untrusted data enters the agent context through the output of 'membrane action run' and action discovery steps as described in 'SKILL.md'.
- Boundary markers: There are no explicit markers or instructions to treat data from the API as untrusted or separate from system instructions.
- Capability inventory: The skill possesses the capability to run predefined actions ('membrane action run') and create new actions ('membrane action create') based on descriptions.
- Sanitization: No evidence of data sanitization or input validation for content retrieved from external API endpoints is present in the skill instructions.
Audit Metadata