apploi
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the npm registry to interact with the Membrane platform. - [COMMAND_EXECUTION]: The skill executes various
membraneshell commands to authenticate users, manage service connections, and execute integration actions. - [PROMPT_INJECTION]: The skill ingests data from external Apploi sources via Membrane, creating a surface for indirect prompt injection if malicious content is present in those external systems. * Ingestion points: Data returned from
membrane action runandmembrane action listcommands. * Boundary markers: The instructions do not define specific delimiters or instructions to ignore embedded content in processed data. * Capability inventory: The agent can execute shell commands via the CLI to run actions and create new ones. * Sanitization: The skill does not specify any sanitization or validation logic for the content retrieved from Apploi.
Audit Metadata