beekeeper
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill directs the user to install the @membranehq/cli package via NPM. This is the official command-line interface for the Membrane platform, which is the vendor of this skill.
- [COMMAND_EXECUTION]: The skill uses the membrane CLI to perform various tasks such as authentication, searching for Beekeeper actions, and executing API requests. These commands are standard for the skill's stated purpose of managing Beekeeper data.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it processes content retrieved from Beekeeper (e.g., posts, comments, user profiles) which could contain adversarial instructions. \n * Ingestion points: Data enters the agent's context through CLI outputs from actions like list-posts and list-comments. \n * Boundary markers: No specific delimiters or instructions to ignore embedded content are provided. \n * Capability inventory: The skill can create, update, and delete data in Beekeeper via CLI actions, and can make arbitrary requests to the Beekeeper API. \n * Sanitization: The skill does not implement or describe any sanitization of the retrieved external data.
Audit Metadata