float
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the npm registry. This is an official, vendor-provided CLI tool required for the skill's functionality. - [COMMAND_EXECUTION]: All primary functions are performed by executing the
membraneCLI tool to manage connections and run actions. - [PROMPT_INJECTION]: The skill ingests data from the Float API, which represents an indirect prompt injection surface.
- Ingestion points: Outputs from
membrane action runandmembrane request(documented in SKILL.md). - Boundary markers: Absent; the skill does not define specific delimiters for external data.
- Capability inventory: The skill can read, create, and modify projects and tasks via CLI commands (SKILL.md).
- Sanitization: No sanitization or validation of the external API responses is provided in the instructions.
Audit Metadata