cloudcraft
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill suggests installing the
@membranehq/clipackage via npm. This is an official resource provided by the author (membranedev) for interacting with their platform.- [COMMAND_EXECUTION]: The instructions involve running variousmembraneCLI commands to manage connections and execute actions. These are standard operations for the tool's intended use.- [DATA_EXFILTRATION]: The skill follows security best practices by recommending the use of Membrane connections rather than requesting raw API keys or tokens from the user.- [INDIRECT_PROMPT_INJECTION]: The skill processes data from external API responses which may contain untrusted content. - Ingestion points: Outputs from
membrane action listandmembrane request. - Boundary markers: None present in the instructions.
- Capability inventory: The agent can execute shell commands via the Membrane CLI.
- Sanitization: No specific sanitization or validation steps are outlined for the processed data.
Audit Metadata