graphcms
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage from the npm registry. This is an official command-line tool provided by the vendor to manage integrations and authentication. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to execute various tasks such as authenticating users, discovering available API actions, and performing data operations. These are standard operations for this toolset. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection since it retrieves and processes content from an external CMS (GraphCMS).
- Ingestion points: Data enters the agent's context via the output of
membrane action runandmembrane requestcommands. - Boundary markers: No specific delimiters are used to wrap the data retrieved from the external source.
- Capability inventory: The skill can execute shell commands and perform network operations through the Membrane CLI.
- Sanitization: The instructions do not specify any sanitization or filtering of the content retrieved from the CMS before it is interpreted by the agent.
Audit Metadata