bloom-growth
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user or agent to install the
@membranehq/clipackage globally via the npm registry. This is the official command-line tool for the vendor's platform. - [COMMAND_EXECUTION]: The agent is guided to execute various shell commands to manage the Bloom Growth integration, including
membrane login,membrane connect, andmembrane action run. These commands are used to interact with the vendor's API through a controlled CLI. - [REMOTE_CODE_EXECUTION]: The skill utilizes the
membrane action createcommand, which allows the Membrane platform to dynamically generate and deploy new integration logic based on natural language descriptions. This code is managed and executed within the vendor's cloud environment. - [PROMPT_INJECTION]: As the skill ingests data from external Bloom Growth records and action outputs, it possesses an indirect prompt injection surface. Data returned from the platform could potentially contain instructions that influence the agent's next steps.
- Ingestion points: Data retrieved via
membrane action listandmembrane action runoutputs. - Boundary markers: None explicitly defined in the prompt instructions to isolate external data.
- Capability inventory: Local shell command execution through the
membraneCLI. - Sanitization: No specific sanitization or validation steps are defined for the data returned by the API.
Audit Metadata