Skills
skills/membranedev/application-skills/botanalytics/Gen Agent Trust Hub

botanalytics

Pass

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the @membranehq/cli global package to interact with the Botanalytics API. This is a vendor-provided tool used for authentication and executing pre-defined actions.
  • [EXTERNAL_DOWNLOADS]: The skill references the installation of the Membrane CLI from the official npm registry (npm install -g @membranehq/cli). This is a legitimate download of a tool from a trusted registry for the vendor's own platform.
  • [PROMPT_INJECTION]: The skill processes data from the Botanalytics API, which creates a surface for indirect prompt injection.
  • Ingestion points: Data enters the agent context through the outputs of the membrane action run and membrane request commands.
  • Boundary markers: There are no explicit delimiters or instructions to ignore embedded commands in the processed data.
  • Capability inventory: The skill allows the agent to execute further actions and API requests via the membrane CLI.
  • Sanitization: No specific validation or sanitization of the API data is mentioned in the instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 23, 2026, 03:02 PM