gpt-trainer
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clinpm package. This is a legitimate vendor resource provided by the author to facilitate secure communication and automated credential management for the integration. - [PROMPT_INJECTION]: The skill processes data from Gpt-trainer which could serve as a vector for indirect prompt injection. Ingestion points: Untrusted data enters the context through actions that retrieve chat messages, chatbot settings, and session details from the Gpt-trainer API via the
membraneCLI. Boundary markers: No specific delimiters or instructions are provided to the agent to ignore embedded commands in the retrieved data. Capability inventory: The skill can execute command-line actions and perform network requests using the Membrane proxy feature. Sanitization: No explicit sanitization or validation of the external content is implemented in the skill instructions.
Audit Metadata