clinchpad
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install the
@membranehq/clipackage globally via NPM. This is an official tool provided by the skill's authoring organization. - [COMMAND_EXECUTION]: The skill relies on executing
membraneCLI commands to manage authentication, discover actions, and interact with the ClinchPad API. - [PROMPT_INJECTION]: The skill processes data from an external source (ClinchPad), which presents an indirect prompt injection surface where malicious instructions could be embedded in CRM records.
- Ingestion points: Records such as leads, contacts, and organizations are retrieved from ClinchPad through the
membrane action runandmembrane requestcommands. - Boundary markers: The skill instructions do not specify any delimiters or instructions for the agent to ignore instructions embedded in the retrieved data.
- Capability inventory: The skill has the ability to perform write operations (create, update, delete) in ClinchPad and can execute shell commands through the CLI.
- Sanitization: No sanitization or validation logic is defined for the content fetched from the CRM API.
Audit Metadata