crowdin
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official vendor CLI tool (@membranehq/cli) from the npm registry to facilitate communication with the platform.
- [COMMAND_EXECUTION]: It utilizes the 'membrane' command-line interface to perform operations such as user authentication, connector discovery, and executing project-specific actions.
- [SAFE]: Authentication is handled securely through the platform's connection flow, which avoids the need for hardcoded secrets or direct handling of API keys by the user.
- [PROMPT_INJECTION]: Indirect injection surface identified: 1. Ingestion point: Crowdin action outputs and API responses processed in SKILL.md. 2. Boundary markers: Absent. 3. Capabilities: Execution of CLI commands via the agent. 4. Sanitization: Absent. This surface is consistent with the skill's primary function of processing localization data.
Audit Metadata