browserstack
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI package (
@membranehq/cli) globally via the npm registry to enable interaction with the platform. - [COMMAND_EXECUTION]: The skill utilizes shell commands via the
membraneCLI to perform various operations, including authentication, connection management, action discovery, and API requests. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it retrieves and processes data from an external provider.
- Ingestion points: Data is ingested from BrowserStack through commands like
membrane action runandmembrane request, specifically when fetching text logs, Appium logs, or device logs. - Boundary markers: The instructions do not define specific delimiters or protective prompts to help the agent distinguish between its instructions and the data retrieved from BrowserStack logs.
- Capability inventory: The skill environment allows for shell command execution and network requests through the Membrane CLI.
- Sanitization: There is no evidence of sanitization or filtering of the content retrieved from the external API before it is presented to the agent.
Audit Metadata