userflow
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the official NPM registry. This is the legitimate tool for interacting with the Membrane platform as described in the skill's purpose. - [COMMAND_EXECUTION]: The skill uses the
membranecommand-line tool to perform actions such aslogin,connect, andaction run. These commands are scoped to the integration's intended functionality and do not involve unauthorized system access. - [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface as it processes data retrieved from Userflow via action results. While instructions could theoretically be embedded in the external data, the skill is subject to standard AI guardrails.
- Ingestion points: Data returned from
membrane action runcommands. - Boundary markers: None specified in the instructions.
- Capability inventory: Shell execution via the
membraneCLI tool. - Sanitization: The skill relies on the Membrane platform's internal handling of API data.
Audit Metadata