pricefy
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage globally via npm. This is the official command-line interface provided by the skill's author (membrane) to facilitate platform integrations.- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it ingests and processes data from external API responses. - Ingestion points: Data retrieved from
membrane action listandmembrane action runcommands is processed by the agent. - Boundary markers: None identified; the instructions do not specify the use of delimiters to separate external data from agent instructions.
- Capability inventory: The skill allows the agent to execute shell commands via the CLI, create new actions, and run existing API integrations.
- Sanitization: There is no mention of sanitization or validation of the content returned from Pricefy.io before it is processed by the agent.- [SAFE]: The skill implements best practices for secret management by utilizing
membrane loginandmembrane connectfor authentication, ensuring that sensitive credentials like API tokens are handled server-side rather than being exposed in the prompt or local environment.
Audit Metadata