Skills
skills/membranedev/application-skills/scrapingbee/Gen Agent Trust Hub

scrapingbee

Pass

Audited by Gen Agent Trust Hub on May 1, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli package globally via the NPM registry. This is the official command-line interface provided by the vendor for interacting with their platform.
  • [COMMAND_EXECUTION]: The instructions guide the agent to use the membrane CLI for authentication, connection management, and running actions. These operations are standard and required for the skill's primary function of managing ScrapingBee data.
  • [PROMPT_INJECTION]: The skill involves a surface for indirect prompt injection because it processes content scraped from external websites.
  • Ingestion points: Data retrieved from external URLs via the membrane action run command, as described in SKILL.md.
  • Boundary markers: None specified in the instructions for delimiting scraped content.
  • Capability inventory: The agent has the ability to execute CLI commands and create new platform actions.
  • Sanitization: There is no evidence of sanitization or filtering applied to the ingested web content within the skill instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
May 1, 2026, 12:05 AM