altoviz
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the official @membranehq/cli NPM package to manage the integration and authentication process.
- [COMMAND_EXECUTION]: The skill uses the membrane CLI to perform authentication, discover available API actions, and execute requests against the Altoviz platform.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection by processing external data from Altoviz. Ingestion points: Records retrieved via membrane action run and membrane request. Boundary markers: None present. Capability inventory: Execution of predefined actions and raw API proxying. Sanitization: No explicit sanitization or filtering of external data is mentioned in the instructions.
Audit Metadata