teamioo

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the Membrane CLI (npx @membranehq/cli@latest) to manage authentication, discover actions, and execute API calls. This includes using commands like login, connect, and action run, which are standard operations for this tool.
  • [EXTERNAL_DOWNLOADS]: The skill pulls the @membranehq/cli package from the npm registry using npx. This is a well-known service, and the package is a verified resource belonging to the vendor.
  • [PROMPT_INJECTION]: The skill processes data from the Teamioo API, which represents a potential indirect prompt injection surface.
  • Ingestion points: External data enters the context through API responses retrieved via the action run and request CLI commands.
  • Boundary markers: No specific delimiters or safety instructions are defined to separate external data from system instructions.
  • Capability inventory: The skill has the capability to execute shell commands and perform authenticated network requests via the Membrane CLI.
  • Sanitization: The skill does not specify explicit sanitization or validation logic for the ingested data.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 11:01 PM
Security Audit — agent-trust-hub — teamioo