dailybot
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the Membrane CLI (@membranehq/cli) from the public npm registry to interact with the integration platform.
- [COMMAND_EXECUTION]: Uses the membrane command-line tool to perform various operations such as searching for connectors, connecting to DailyBot, and running specific API actions (e.g., list-users, send-message).
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface because it processes external data from DailyBot that could potentially contain malicious instructions.
- Ingestion points: Data is ingested through actions such as list-check-ins, list-users, and get-check-in-responses as described in SKILL.md.
- Boundary markers: No specific boundary markers or instructions to ignore embedded commands are present.
- Capability inventory: The skill has the ability to write data via send-message, send-email, and create-webhook actions (SKILL.md).
- Sanitization: No sanitization or validation of the retrieved external content is mentioned.
Audit Metadata