cloudfill
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage. This is a vendor-owned tool required for the skill to function and is hosted on a standard package registry. - [COMMAND_EXECUTION]: The skill uses the
membraneCLI to interact with the CloudFill API. This allows the agent to perform data management tasks within the scope of the user's authenticated session. - [DATA_EXFILTRATION]: Network communication is established with
getmembrane.comandcloudfill.coto perform storage operations. This is the intended behavior of the skill and uses the vendor's secure proxy for credential management. - [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it processes data from external API calls. However, it uses a structured command-line interface that limits the potential for instruction override. Evidence: Ingestion points (membrane action list, membrane request in SKILL.md), Boundary markers (Absent), Capability inventory (membrane action run in SKILL.md), Sanitization (Absent).
Audit Metadata