flexie
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the membrane CLI to interact with the Flexie platform, performing operations such as managing contacts, deals, and accounts.
- [EXTERNAL_DOWNLOADS]: Recommends the installation of the @membranehq/cli package via NPM, which is a verified vendor tool for the Membrane platform used for authentication and API interaction.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection because it processes data retrieved from external Flexie API responses.
- Ingestion points: Data from Flexie API calls like list-contacts and get-deal in SKILL.md.
- Boundary markers: Absent; external data is processed directly without explicit delimiters or instructions to ignore embedded commands.
- Capability inventory: Execution of shell commands via the membrane CLI and write access to the Flexie API.
- Sanitization: Absent; external content is not validated or escaped before being processed by the agent.
Audit Metadata