botmaker
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from NPM. This is a tool provided by the skill's author (membranedev) to facilitate interaction with their platform. - [COMMAND_EXECUTION]: The skill uses several
membraneCLI commands to manage authentication, discover actions, and execute requests. These are standard operations for this type of integration and do not involve arbitrary command execution or shell injection. - [DATA_EXFILTRATION]: No evidence of unauthorized data access or exfiltration. The skill uses a secure proxy mechanism (
membrane request) and official connection management to handle sensitive data and credentials. - [PROMPT_INJECTION]: No malicious instructions or bypass attempts were found in the prompt logic.
- [SAFE]: The skill processes external data returned from the Membrane CLI (action schemas and results), which represents a theoretical indirect prompt injection surface common to all integration skills. However, no specific vulnerabilities were identified.
Audit Metadata