dbt-cloud
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill facilitates the execution of administrative and data management commands via the
membraneCLI tool. This includes operations such as creating projects, listing users, and managing service tokens within dbt Cloud. These actions are aligned with the skill's primary purpose. - [EXTERNAL_DOWNLOADS]: The skill directs users to install the
@membranehq/clipackage via npm. This is the official CLI tool provided by the vendor (membranedev) and is a standard requirement for utilizing the service's integration capabilities. - [PROMPT_INJECTION]: The skill demonstrates a surface for indirect prompt injection where user-supplied data might be processed as input for CLI commands or API proxy requests.
- Ingestion points: Input parameters provided to the
membrane action runandmembrane requestcommands as described in SKILL.md. - Boundary markers: No explicit delimiters or boundary markers for untrusted data are specified in the provided instructions.
- Capability inventory: The skill can perform write operations, such as creating or updating projects, environments, and users via CLI subprocess calls.
- Sanitization: The instructions do not define specific sanitization or validation logic for external content before it is passed to the CLI.
Audit Metadata