d7-sms
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the official
@membranehq/clifrom the npm registry. This is a standard dependency provided by the skill author for interacting with their platform and is considered safe for its intended purpose. - [COMMAND_EXECUTION]: The skill instructs the agent to run
membraneCLI commands to manage SMS messaging and authentication. These operations are limited to the scope of the D7 SMS service. - [CREDENTIALS_UNSAFE]: The skill demonstrates good security posture by explicitly advising against local storage of secrets. It uses a centralized authentication flow where tokens are managed server-side by the Membrane platform.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it processes data from an external API. Ingestion points: Output from
membrane action runandmembrane requestin SKILL.md. Boundary markers: Structural JSON formatting enforced by the--jsonflag. Capability inventory: Execution of shell commands via themembraneCLI. Sanitization: Relies on the agent's ability to parse structured JSON data.
Audit Metadata