Skills
skills/membranedev/application-skills/fraudlabs-pro/Gen Agent Trust Hub

fraudlabs-pro

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI utility (@membranehq/cli) globally via npm to enable interaction with the service.
  • [COMMAND_EXECUTION]: The agent uses the membrane command-line tool to manage connections, list available actions, and execute requests against the FraudLabs Pro API.
  • [PROMPT_INJECTION]: The skill processes external transaction, order, and customer data retrieved from FraudLabs Pro, which could potentially contain malicious instructions intended to influence the agent's behavior.
  • Ingestion points: Data returned from FraudLabs Pro API endpoints via membrane action run and membrane request commands.
  • Boundary markers: None identified in the skill instructions.
  • Capability inventory: Subprocess execution through the membrane CLI and network access via the Membrane proxy.
  • Sanitization: No explicit sanitization or validation of external data is described in the skill instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 09:50 AM