enable-banking
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally using npm. This is an official command-line tool provided by the vendor for interacting with their services. - [COMMAND_EXECUTION]: The instructions involve running various
membraneCLI commands to handle authentication, manage banking connections, and execute API actions. These commands are part of the intended functionality for interacting with the Membrane platform. - [INDIRECT_PROMPT_INJECTION]: The skill processes data from the external Enable Banking API, which represents a potential surface for indirect prompt injection.
- Ingestion points: Data is ingested via
membrane action runandmembrane requestcommands (SKILL.md). - Boundary markers: No explicit delimiters or instructions are used to separate external data from agent instructions.
- Capability inventory: The agent can execute shell commands via the
membraneCLI (SKILL.md). - Sanitization: There is no mention of sanitization or validation of the data received from the external API.
Audit Metadata