formidable-forms
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection Surface Detection:\n
- Ingestion points: Untrusted data is retrieved via
list-entries,get-entry,list-form-fields,list-forms, andget-formcommands specified inSKILL.md.\n - Boundary markers: The skill does not define specific delimiters or warnings to isolate processed data from agent instructions.\n
- Capability inventory: The skill possesses capabilities to modify data through actions like
delete-entry,update-entry, andcreate-form, as well as raw API access viamembrane request.\n - Sanitization: There are no documented procedures for sanitizing or validating external input before it is used by the agent.\n- [EXTERNAL_DOWNLOADS]: The skill prompts the installation of the
@membranehq/cliNPM package. This is a standard dependency from the primary vendor to support the skill's functionality.\n- [COMMAND_EXECUTION]: The skill utilizes themembraneCLI for managing service connections and executing API-wrapped actions, which is the intended use case for this integration.
Audit Metadata