syniverse
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the public npm registry. This is the official command-line tool for the Membrane platform. - [COMMAND_EXECUTION]: The instructions involve executing various
membraneCLI commands to manage authentication (membrane login), connection setup (membrane connect), and action execution (membrane action run). These are standard operational procedures for the vendor's toolset. - [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection by interpolating user-provided intents and parameters into CLI commands.
- Ingestion points: Untrusted data enters via the
--intentargument inmembrane action listand the--inputargument inmembrane action runas described inSKILL.md. - Boundary markers: No explicit delimiters or warnings are present to instruct the agent to ignore instructions embedded in the user-provided data.
- Capability inventory: The skill utilizes the
membraneCLI to interact with external APIs, create new actions, and execute code on the Membrane platform. - Sanitization: No explicit sanitization or validation logic is defined for the input parameters or search queries.
Audit Metadata