aeroleads
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from npm. This is the official tool provided by the vendor (Membrane) for integration and authentication. - [COMMAND_EXECUTION]: The skill uses
membraneCLI subcommands likelogin,connect, andaction runto interact with AeroLeads. These commands are necessary for the skill's primary function and are executed through the vendor's CLI. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through data ingested from the AeroLeads API. * Ingestion points: Data enters the agent context via
membrane action runandmembrane requestcalls in SKILL.md. * Boundary markers: No explicit delimiters or instructions to ignore embedded content are defined. * Capability inventory: The agent can perform network requests and execute actions within the AeroLeads environment via themembranetool. * Sanitization: No documented sanitization or validation of the external lead data before processing.
Audit Metadata