teamioo
Pass
Audited by Gen Agent Trust Hub on Jun 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Membrane CLI (
npx @membranehq/cli@latest) to manage authentication, discover actions, and execute API calls. This includes using commands likelogin,connect, andaction run, which are standard operations for this tool. - [EXTERNAL_DOWNLOADS]: The skill pulls the
@membranehq/clipackage from the npm registry usingnpx. This is a well-known service, and the package is a verified resource belonging to the vendor. - [PROMPT_INJECTION]: The skill processes data from the Teamioo API, which represents a potential indirect prompt injection surface.
- Ingestion points: External data enters the context through API responses retrieved via the
action runandrequestCLI commands. - Boundary markers: No specific delimiters or safety instructions are defined to separate external data from system instructions.
- Capability inventory: The skill has the capability to execute shell commands and perform authenticated network requests via the Membrane CLI.
- Sanitization: The skill does not specify explicit sanitization or validation logic for the ingested data.
Audit Metadata