accredible
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the NPM registry. This is a vendor-owned tool from 'membranedev' used to facilitate the integration.\n- [COMMAND_EXECUTION]: The skill executes variousmembraneCLI commands to perform authentication (membrane login), connection management (membrane connect), and API interactions (membrane action run,membrane request).\n- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface due to its primary function of ingesting data from an external API (Accredible).\n - Ingestion points: Data enters the agent's context through output from the
membrane action runandmembrane requestcommands (found in SKILL.md).\n - Boundary markers: The instructions do not specify the use of delimiters or specific system prompts to isolate or ignore instructions potentially embedded in the API data.\n
- Capability inventory: The skill has the ability to execute shell commands and perform network operations via the Membrane proxy.\n
- Sanitization: There is no evidence of data sanitization or validation performed on the external content before it is processed by the agent.
Audit Metadata