repuso
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the official @membranehq/cli package from the NPM registry to interact with the Membrane platform.
- [COMMAND_EXECUTION]: Executes several membrane CLI commands for authentication (membrane login), connection management (membrane connect), and running API actions (membrane action run).
- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection by processing external data from Repuso.
- Ingestion points: External data is ingested through the output of membrane action run commands as described in SKILL.md.
- Boundary markers: No specific boundary markers or instructions to ignore embedded content are provided for the processed data.
- Capability inventory: The skill possesses command execution capabilities through the membrane CLI.
- Sanitization: There is no evidence of sanitization or filtering applied to the data retrieved from external sources.
Audit Metadata