agiled
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli NPM package. This is a vendor-provided tool from the author used for managing API connections and credentials.
- [COMMAND_EXECUTION]: The skill executes membrane CLI commands to handle authentication, search for connectors, and run API actions. These are legitimate operations for the skill's intended functionality.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface due to its data ingestion capabilities. 1. Ingestion points: The skill fetches data from Agiled using the membrane action run and membrane request tools. 2. Boundary markers: No delimiters or protective instructions are specified for the incoming data. 3. Capability inventory: The skill has the capability to execute shell commands via the membrane CLI. 4. Sanitization: No specific sanitization or validation of the remote API response is documented.
Audit Metadata