athenahealth
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes external data from Athenahealth (such as Patient and Appointment records) which presents an indirect prompt injection surface. * Ingestion points: Outputs from 'membrane action run' and 'membrane request' commands. * Boundary markers: Not present. * Capability inventory: Execution of API actions and arbitrary HTTP requests via the CLI. * Sanitization: Not specified.
- [EXTERNAL_DOWNLOADS]: Recommends the global installation of the '@membranehq/cli' package. This is an official utility provided by the vendor to facilitate the integration.
- [COMMAND_EXECUTION]: Instructs the agent to execute 'membrane' CLI commands for session management, resource discovery, and API interaction.
Audit Metadata