api4ai
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the @membranehq/cli package from the NPM registry. This is a legitimate tool provided by the author to facilitate secure communication with the Api4ai API and is considered a trusted vendor resource.
- [COMMAND_EXECUTION]: Uses the membrane CLI for managing connections and running actions. These commands are standard for the Membrane ecosystem and do not involve unauthorized system modifications or privilege escalation.
- [PROMPT_INJECTION]: The skill processes user-controlled data that is subsequently passed to external APIs. Ingestion points: user data enters via the --input flag and path parameters within the command templates in SKILL.md. Boundary markers: no specific delimiters are present to instruct the model to ignore embedded instructions in the processed data. Capability inventory: the skill can execute subprocesses via the membrane CLI and perform network requests. Sanitization: no explicit sanitization or validation of user-provided content is described in the instructions.
Audit Metadata