redis
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli package from the public NPM registry. This is the official command-line interface provided by the vendor to interact with their services.
- [COMMAND_EXECUTION]: Extensive use of the membrane CLI tool to perform system-level operations including user authentication, session management, and connection establishment.
- [REMOTE_CODE_EXECUTION]: The membrane action run command executes logic hosted on the Membrane platform. While these are managed actions, they represent code execution initiated via the agent.
- [PROMPT_INJECTION]: The skill implements a natural language interface for discovering and creating actions (membrane action list --intent and membrane action create). This creates a surface for indirect prompt injection (Category 8) where untrusted data could influence the selection or generation of executable logic.
Audit Metadata