astronomer
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage via NPM. This is an official utility provided by the vendor for managing Astronomer connections and actions. - [PROMPT_INJECTION]: The skill processes output from external data actions which could represent a surface for indirect prompt injection.
- Ingestion points: Data retrieved from the
membrane action runcommand as described inSKILL.md. - Boundary markers: No specific delimiters or boundary instructions are provided for isolating the content of action outputs.
- Capability inventory: Terminal access via the Membrane CLI for connection management and workflow execution.
- Sanitization: No explicit sanitization or schema validation of the action's output is mandated in the skill instructions.
Audit Metadata