unzer
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from npm. This tool is provided by the vendor ('membrane') to manage integrations and is a standard dependency for this skill's functionality.\n- [COMMAND_EXECUTION]: The skill executes variousmembraneCLI commands to handle user login, establish service connections, and execute API actions. These operations are performed within the scope of the vendor's toolset.\n- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it processes descriptions and outputs from the Unzer API which are then integrated into the agent's context.\n - Ingestion points: Data retrieved from
membrane action listandmembrane action run(SKILL.md).\n - Boundary markers: No specific delimiters or safety instructions are used to wrap data retrieved from the API.\n
- Capability inventory: The agent can execute shell commands through the
membraneCLI (SKILL.md).\n - Sanitization: The skill does not describe any specific sanitization or validation of content received from the external API.
Audit Metadata