1c
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation directs the user to install the @membranehq/cli package via npm. This is a legitimate tool provided by the vendor for managing the integration.
- [COMMAND_EXECUTION]: The skill facilitates the execution of the membrane CLI tool to interact with 1C-Bitrix, including listing connections, running actions, and making proxy requests. This is the intended functionality for managing the integration.
- [PROMPT_INJECTION]: The skill processes data from 1C-Bitrix, which represents an indirect prompt injection surface typical of CMS integrations.
- Ingestion points: Data is retrieved from 1C-Bitrix via membrane action run and membrane request calls.
- Boundary markers: The documentation does not specify the use of delimiters or instructions for the agent to ignore instructions within the retrieved content.
- Capability inventory: The skill can execute commands through the Membrane CLI to modify or query 1C-Bitrix data.
- Sanitization: No explicit sanitization procedures are defined for the external data being processed by the agent.
Audit Metadata