whoisfreaks
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends installing the vendor's official CLI tool (
@membranehq/cli) from the public npm registry to manage integrations. - [COMMAND_EXECUTION]: Uses shell commands (
membrane login,membrane connect,membrane action run) to handle authentication, connectivity, and data retrieval. - [REMOTE_CODE_EXECUTION]: Implements dynamic action creation (
membrane action create) where integration logic is generated on the Membrane platform based on natural language descriptions and subsequently executed. - [DATA_EXFILTRATION]: Ingests external data from WhoisFreaks (WHOIS records, DNS, IP information). While this introduces an indirect prompt injection surface common to research tools, the skill mitigates credential theft by delegating authentication to the Membrane platform.
Audit Metadata