circle
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [UNVERIFIABLE_DEPENDENCIES_AND_REMOTE_CODE_EXECUTION]: The skill installs the official '@membranehq/cli' package globally via npm. This is a trusted vendor resource for the Membrane platform.
- [INDIRECT_PROMPT_INJECTION]: The skill retrieves content from Circle (posts, comments) which could contain indirect prompt injection attempts.
- Ingestion points: External data retrieved from the Circle API via actions like 'list-posts' and 'list-comments' (SKILL.md).
- Boundary markers: Not explicitly defined in the CLI command templates.
- Capability inventory: Uses 'membrane action run' and 'membrane request' to perform API operations (SKILL.md).
- Sanitization: Relies on the structured schemas and proxy validation provided by the Membrane platform.
Audit Metadata