chaser
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the Membrane CLI (@membranehq/cli) from the official npm registry. This is a tool provided by the vendor (membranedev) to handle authentication and API requests securely.
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface
- Ingestion points: The skill retrieves data from the Chaser sales platform using the
membrane action runandmembrane requestcommands. - Boundary markers: The instructions do not define delimiters or specific markers to separate data fetched from the external API from the agent's internal instructions.
- Capability inventory: The skill enables the agent to execute CRM actions, make direct HTTP requests through a proxy, and manage service connections.
- Sanitization: No specific data sanitization or validation protocols are mentioned for the content returned by the Chaser API.
Audit Metadata