brilliant-directories
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the NPM registry to facilitate communication with the Membrane platform. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform operations such as logging in, managing connections, and executing actions against the Brilliant Directories API. - [PROMPT_INJECTION]: The skill processes data from Brilliant Directories (members, posts, reviews, and leads), which represents an indirect prompt injection surface.
- Ingestion points: External content is ingested from directory records retrieved via
membrane action runandmembrane requestcommands. - Boundary markers: The skill does not implement specific boundary markers or instructions to ignore embedded commands in the processed data.
- Capability inventory: The skill can execute predefined actions and send arbitrary HTTP requests through the Membrane proxy.
- Sanitization: There is no mention of sanitization, validation, or filtering of the content retrieved from the external service.
Audit Metadata