mapulus
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the official NPM registry. This is the legitimate tool for the Membrane platform used to manage the integration. - [COMMAND_EXECUTION]: The skill uses the
membraneCLI to perform authentication, connection management, and action execution. These commands are necessary for the primary function of the skill. - [DATA_EXFILTRATION]: The skill adheres to security best practices by explicitly instructing the agent to let the Membrane platform handle authentication and credentials, preventing the need for the agent to handle sensitive API keys or tokens locally.
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it processes data from external actions.
- Ingestion points: Data retrieved via
membrane action listandmembrane action run(SKILL.md). - Boundary markers: None identified in the prompt instructions.
- Capability inventory: The skill can execute various actions on the Mapulus platform via
membrane action run(SKILL.md). - Sanitization: Not explicitly defined in the skill body; assumed to be managed by the underlying platform.
Audit Metadata