dnsfilter
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for the agent to execute shell commands using the
membraneCLI to manage connections and run actions against the DNSFilter API. - [EXTERNAL_DOWNLOADS]: The documentation directs the user to install the
@membranehq/clipackage from the public npm registry. This is a vendor-owned resource used for interacting with the Membrane platform. - [PROMPT_INJECTION]: The skill interacts with external data from the DNSFilter API, creating a surface for indirect prompt injection.
- Ingestion points: Untrusted data enters the context from DNSFilter API responses via
membrane action runandmembrane requestoutputs. - Boundary markers: No specific delimiters or safety instructions are defined to separate external data from system instructions.
- Capability inventory: The skill allows for command execution via the CLI and network requests to the DNSFilter proxy.
- Sanitization: The skill does not explicitly describe sanitization or validation of data returned from external endpoints before processing.
Audit Metadata