paykickstart
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill directs the user to install the
@membranehq/cliglobal package from the npm registry. This package is the official tool provided by the vendor to facilitate secure API communication and authentication. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI for operational tasks including authentication, connection management, and running API actions. These commands are integral to the skill's purpose of managing Paykickstart data. - [PROMPT_INJECTION]: The skill processes external data from Paykickstart and uses natural language intent to discover actions, which represents a surface for indirect prompt injection.
- Ingestion points: External data from Paykickstart enters the agent context through the output of the
membrane action runcommand. - Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the provided instructions.
- Capability inventory: The skill possesses the ability to execute API actions and dynamically create new ones via the
membraneCLI. - Sanitization: The instructions do not specify any sanitization or validation logic for the data retrieved from external API calls.
Audit Metadata