modeck
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the NPM registry to function. This is a vendor-provided tool. - [COMMAND_EXECUTION]: Instructions involve running several
membraneCLI commands to manage authentication, list connections, and execute actions. - [REMOTE_CODE_EXECUTION]: The skill enables the execution of remote logic via
membrane action runand the dynamic generation of new logic throughmembrane action create. - [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection by processing untrusted data from external sources (MoDeck/Twitter).
- Ingestion points: Output from
membrane action listandmembrane action runare ingested into the agent context as described inSKILL.md. - Boundary markers: No delimiters or specific isolation instructions are defined for processing the data returned by the CLI.
- Capability inventory: The skill has access to local shell execution via the
membraneCLI. - Sanitization: No specific sanitization, validation, or filtering of the API response data is described before it is processed by the agent.
Audit Metadata