Skills
skills/membranedev/application-skills/kiotviet/Gen Agent Trust Hub

kiotviet

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package, which is an official tool provided by the vendor (membranedev) for platform interaction.
  • [COMMAND_EXECUTION]: The skill uses local shell commands to execute the Membrane CLI for logging in, establishing connections to KiotViet, and running specific data operations.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes data returned from the KiotViet API and Membrane actions. 1. Ingestion points: Output from 'membrane action run' and 'membrane action list' in SKILL.md. 2. Boundary markers: None present in the provided instructions. 3. Capability inventory: Subprocess execution of the Membrane CLI. 4. Sanitization: Not specified, relies on the underlying agent's and platform's default handling of external strings.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 06:50 PM