apolloio
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the @membranehq/cli package from the npm registry. This is a vendor-managed tool used to facilitate authentication and API interactions with the Membrane platform.
- [COMMAND_EXECUTION]: The instructions utilize the
membraneCLI to execute various commands including login, action discovery, and running API requests. These commands are necessary for the skill's primary function and are scoped to the vendor's ecosystem. - [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it processes external data from Apollo.io.
- Ingestion points: Data retrieved from Apollo.io via
membrane action runandmembrane requestcommands. - Boundary markers: None explicitly defined in the provided instructions.
- Capability inventory: Subprocess execution via the
membraneCLI tool. - Sanitization: Relies on standard agent-level safety protocols and platform-side data handling.
- Ingestion points: Data retrieved from Apollo.io via
Audit Metadata