amazon-api-gateway
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the @membranehq/cli NPM package. This is the official command-line interface provided by the vendor to facilitate the integration.
- [COMMAND_EXECUTION]: Uses the membrane CLI to perform various operations such as membrane login, membrane connect, and membrane action run. These commands are used to interact with the Membrane platform and the Amazon API Gateway.
- [PROMPT_INJECTION]: The skill processes external data from Amazon API Gateway, which represents a potential indirect prompt injection surface.
- Ingestion points: API responses from membrane action run and membrane request commands.
- Boundary markers: The documentation does not specify delimiters for separating API response data from agent instructions.
- Capability inventory: The agent can execute CLI commands and make network requests via the membrane tool.
- Sanitization: No explicit sanitization of API responses is documented within the skill instructions.
Audit Metadata