Skills
skills/membranedev/application-skills/iterate/Gen Agent Trust Hub

iterate

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the official @membranehq/cli tool from the npm registry to enable interaction with the Membrane platform.
  • [COMMAND_EXECUTION]: Utilizes the membrane command-line interface to perform authentication, connection management, and action execution, which is standard behavior for the Membrane platform.
  • [PROMPT_INJECTION]: The skill retrieves survey responses and feedback from Iterate, acting as a surface for indirect prompt injection. 1. Ingestion points: Survey response data retrieved via list-survey-responses and list-survey-response-groups. 2. Boundary markers: No delimiters are specified for processed data. 3. Capability inventory: Execution of arbitrary Membrane actions via the CLI. 4. Sanitization: No explicit sanitization or filtering is defined in the instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 10:10 PM