apideck
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage globally via npm. This is an official tool provided by the vendor (Membrane) to facilitate interaction with their integration platform. - [COMMAND_EXECUTION]: The skill executes various
membraneshell commands to manage user authentication, service connections, and API action execution. These operations are core to the skill's functionality. - [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it ingests and processes data from external SaaS applications (CRM, accounting, etc.) via Apideck actions.
- Ingestion points: Output from
membrane action runcommands processed by the agent (SKILL.md). - Boundary markers: No specific delimiters or instructions to ignore embedded content are defined in the skill logic.
- Capability inventory: The skill has the ability to execute shell commands via the
membraneCLI. - Sanitization: There is no evidence of explicit sanitization or validation of the data retrieved from external APIs before it is processed.
Audit Metadata