cnvrgio
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli global package, which is the official command-line tool for the vendor's platform.
- [COMMAND_EXECUTION]: The skill utilizes the membrane CLI to execute commands for session management, action discovery, and running machine learning workflows.
- [PROMPT_INJECTION]: The skill ingests data from Cnvrg.io, creating a potential surface for indirect prompt injection.
- Ingestion points: External data enters through the membrane action run and membrane request commands (SKILL.md).
- Boundary markers: No delimiters or safety instructions are specified for separating external data from agent logic.
- Capability inventory: The skill can execute shell commands via the membrane CLI (SKILL.md).
- Sanitization: There is no mention of sanitization or validation for the data received from the external API.
Audit Metadata