densify
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill relies on the
@membranehq/cliglobal Node.js package. This is a verified resource provided by the author (membranedev) for interacting with their platform services.\n- [SAFE]: Authentication is performed using themembrane logincommand, which uses an OAuth-style browser flow. This eliminates the need for hardcoded API keys or manual credential handling by the AI agent.\n- [PROMPT_INJECTION]: The skill interacts with external data via the Densify API, which introduces a standard surface for indirect prompt injection.\n - Ingestion points: The agent reads data returned from
membrane action runandmembrane requestcommands.\n - Boundary markers: API responses are not enclosed in delimiters to signal the agent to ignore embedded instructions.\n
- Capability inventory: The skill uses the
membraneCLI to perform actions and network requests.\n - Sanitization: There is no documented logic for sanitizing or validation of the data returned from external endpoints.
Audit Metadata