getemails
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the @membranehq/cli package from the npm registry, which is the official tool for interacting with the Membrane ecosystem.
- [COMMAND_EXECUTION]: Shell commands are used to manage authentication (membrane login), discover actions (membrane action list), and execute data requests (membrane action run).
- [PROMPT_INJECTION]: The skill handles lead data (emails, contacts) which creates an indirect prompt injection surface. Ingestion points: Action outputs and proxy requests from GetEmails. Boundary markers: Not provided. Capability inventory: Shell command execution and proxied network requests via the Membrane CLI. Sanitization: None specified.
Audit Metadata