flexera
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the '@membranehq/cli' package globally via npm. This is a legitimate dependency provided by the vendor to facilitate the integration.
- [COMMAND_EXECUTION]: The skill uses the 'membrane' CLI to perform operations such as authentication, connection management, and running actions against the Flexera API. This involves executing shell commands in the local environment.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface (Category 8) by fetching and processing data from the Flexera API.
- Ingestion points: External data is ingested through 'membrane action run' and 'membrane request' commands that fetch reports, user lists, and resource tags from Flexera.
- Boundary markers: The instructions do not specify any delimiters or safety headers to distinguish between data and instructions when processing API responses.
- Capability inventory: The skill has the capability to execute shell commands via the 'membrane' CLI.
- Sanitization: No explicit sanitization or validation of the external API content is mentioned before the data is processed by the agent.
Audit Metadata