Skills
skills/membranedev/application-skills/tooljet/Gen Agent Trust Hub

tooljet

Pass

Audited by Gen Agent Trust Hub on May 2, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI package (@membranehq/cli) from the public NPM registry.
  • [COMMAND_EXECUTION]: Utilizes the membrane CLI to perform authentication, manage ToolJet connections, and execute queries. These operations are part of the intended functionality for interacting with the ToolJet API.
  • [PROMPT_INJECTION]: Ingests external data from ToolJet queries and data sources, which presents a potential surface for indirect prompt injection.
  • Ingestion points: Data retrieved from ToolJet via membrane action run (SKILL.md).
  • Boundary markers: None explicitly defined in the prompt interpolation templates.
  • Capability inventory: The skill can execute shell commands through the Membrane CLI and write to the console.
  • Sanitization: Relies on the underlying platform's handling of action outputs.
Audit Metadata
Risk Level
SAFE
Analyzed
May 2, 2026, 09:41 AM
Security Audit — agent-trust-hub — tooljet