annature
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli package via NPM, which is the official command-line interface provided by the vendor.
- [COMMAND_EXECUTION]: The skill uses various membrane CLI commands to perform its core functions, including authentication via membrane login and interacting with the Annature API via membrane action and membrane request.
- [PROMPT_INJECTION]: The skill processes external data from Annature transactions and documents, which presents a surface for indirect prompt injection. 1. Ingestion points: Results from membrane action run and membrane request. 2. Boundary markers: No explicit delimiters or instructions to ignore embedded content are provided. 3. Capability inventory: The agent can execute membrane CLI commands which allow for network and shell-level operations. 4. Sanitization: No data sanitization or validation logic is specified for the ingested content.
Audit Metadata