equensworldline
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to install the official Membrane CLI tool (
@membranehq/cli) from the npm registry. This is a standard dependency for skills operating within the Membrane ecosystem. - [COMMAND_EXECUTION]: The skill documentation includes shell commands for the
membraneCLI to manage user sessions, discover API actions, and execute requests against the EquensWorldline API. These commands are necessary for the skill's documented functionality. - [PROMPT_INJECTION]: The skill handles data from the EquensWorldline API, creating a surface for indirect prompt injection where external data could potentially influence the agent's behavior.
- Ingestion points: Data enters the agent context through the outputs of
membrane action list,membrane connection list, andmembrane action runcommands (SKILL.md). - Boundary markers: The instructions do not define specific delimiters or instructions for the agent to ignore potentially malicious content within the API data.
- Capability inventory: The agent has the ability to execute further CLI commands and perform network operations based on its interpretation of the data (SKILL.md).
- Sanitization: No explicit sanitization or validation steps are described for the data retrieved from the payment service.
Audit Metadata