bright-security
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via npm and utilizesnpxto execute the CLI. These are vendor-owned tools necessary for the platform's functionality. - [COMMAND_EXECUTION]: The integration operates by executing shell commands via the
membraneCLI to authenticate, manage connections, and trigger actions on the Bright Security service. - [DATA_EXFILTRATION]: No unauthorized data exfiltration patterns were found. The skill uses the Membrane proxy to handle all interactions with the Bright Security API, which centralizes authentication and minimizes the exposure of credentials in the local environment.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection because it retrieves data from external sources such as security scans and vulnerability issues.
- Ingestion points: External data is brought into the agent context through
membrane action runandmembrane requestcommands. - Boundary markers: The skill documentation does not define specific delimiters for separating untrusted security scan data from instructions.
- Capability inventory: The agent can execute various shell commands through the
membraneCLI, which allows for managing infrastructure and connections. - Sanitization: There are no explicit instructions provided for the validation or sanitization of the retrieved security data before it is processed by the agent.
Audit Metadata