github
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the '@membranehq/cli' package from npm. This is the official command-line tool provided by the author (membranedev) to manage integrations.
- [COMMAND_EXECUTION]: The instructions involve executing various 'membrane' CLI commands for authentication, connection management, and API interaction, which is the intended functionality for this skill.
- [PROMPT_INJECTION]: The skill processes untrusted data from GitHub (e.g., issues and pull requests), creating a surface for indirect prompt injection.
- Ingestion points: Data is ingested via 'membrane action run' and 'membrane request' commands (SKILL.md).
- Boundary markers: No explicit delimiters or instructions to ignore embedded content are provided.
- Capability inventory: The skill has the ability to create, update, and merge issues and pull requests (SKILL.md).
- Sanitization: No specific sanitization or filtering of external content is mentioned in the skill instructions.
Audit Metadata