truss
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI package (
@membranehq/cli) from the npm registry. - [COMMAND_EXECUTION]: The skill utilizes shell commands (
membrane,npx) to interact with the Membrane platform API for tasks such as logging in, connecting to services, and running data actions. - [PROMPT_INJECTION]: The skill accepts natural language input to search for or automatically generate new actions via the
membrane action list --intentandmembrane action createcommands, which creates a potential surface for indirect prompt injection. - Ingestion points: Natural language input passed as arguments to CLI commands in
SKILL.md. - Boundary markers: None present in the provided instructions.
- Capability inventory: Execution of shell commands and remote action triggers defined in
SKILL.md. - Sanitization: No explicit sanitization or validation of the input strings is mentioned.
Audit Metadata