Skills
skills/membranedev/application-skills/clayhr/Gen Agent Trust Hub

clayhr

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli package from the npm registry to enable interaction with the Membrane platform.\n- [COMMAND_EXECUTION]: The skill uses membrane CLI commands to manage authentication and execute actions against the ClayHR API.\n- [PROMPT_INJECTION]: The skill processes data from ClayHR, which represents an indirect prompt injection surface.\n
  • Ingestion points: Data retrieved from ClayHR via action outputs and proxy requests.\n
  • Boundary markers: No explicit delimiters or instructions are provided to the agent to ignore embedded commands in the retrieved data.\n
  • Capability inventory: Access to shell commands via the membrane CLI and network proxy capabilities.\n
  • Sanitization: The skill does not specify sanitization or validation logic for the external data ingested.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 03:53 AM