evenium
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the '@membranehq/cli' package from the npm registry. This is a global CLI tool provided by the vendor to facilitate API connections.
- [COMMAND_EXECUTION]: The instructions direct the agent to execute shell commands using the 'membrane' CLI. These commands are used for searching connectors, managing authentication sessions, and performing CRUD operations on Evenium data.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it retrieves and processes external data from Evenium (such as guest lists or event details). Malicious content embedded in these external records could potentially influence the agent's behavior during data processing.
- Ingestion points: Data enters the context via 'membrane action run' and 'membrane request' commands in SKILL.md.
- Boundary markers: No explicit boundary markers or delimiters are defined to isolate external data from instructions.
- Capability inventory: The skill has capabilities to write data back to the API and execute local CLI commands.
- Sanitization: There is no evidence of sanitization or filtering applied to the data retrieved from the Evenium API.
Audit Metadata