automizy
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from npm. This is the official command-line tool provided by the vendor (Membrane) and is considered a safe, intended dependency for the skill's operation. - [COMMAND_EXECUTION]: The skill makes extensive use of the
membraneCLI to manage connections and execute API actions. These commands are legitimate and necessary for the described functionality of interacting with Automizy. - [PROMPT_INJECTION]: The skill interacts with external data from the Automizy API via the
membrane requestandmembrane action runcommands, which introduces a surface for indirect prompt injection. - Ingestion points: Data is ingested through the output of
membraneCLI commands inSKILL.md. - Boundary markers: None identified in the provided instructions.
- Capability inventory: The skill can execute various CLI commands to read and write data to the Automizy API.
- Sanitization: No explicit sanitization or validation of the API response data is mentioned in the skill documentation.
Audit Metadata