Skills
skills/membranedev/application-skills/paypal/Gen Agent Trust Hub

paypal

Pass

Audited by Gen Agent Trust Hub on Apr 30, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane command-line interface via NPM (@membranehq/cli@latest). This is a legitimate vendor tool required for the skill's functionality.
  • [COMMAND_EXECUTION]: The skill relies on the execution of various membrane CLI commands to manage the lifecycle of PayPal integrations, including login, connect, and action run. These commands facilitate interactions with the PayPal API through the Membrane platform.
  • [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it processes natural language intents and descriptions to discover or create PayPal actions.
  • Ingestion points: User-supplied strings passed to the --intent flag in membrane action list and the description argument in membrane action create (SKILL.md).
  • Boundary markers: None present in the command templates.
  • Capability inventory: The agent can execute financial operations (e.g., create-batch-payout, refund-captured-payment) via membrane action run.
  • Sanitization: No client-side sanitization is specified; the skill relies on the Membrane service to interpret and validate the requested actions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 30, 2026, 11:07 PM