gravity-forms
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the @membranehq/cli package globally via NPM. This is a vendor-provided tool used for authentication and interacting with Membrane connectors.
- [COMMAND_EXECUTION]: Utilizes the membrane CLI to perform actions such as login, connection management, and running Gravity Forms API queries and operations.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it retrieves user-submitted data from Gravity Forms entries. * Ingestion points: Output from 'list-entries', 'get-entry', and 'get-form-results' actions in SKILL.md. * Boundary markers: None present to distinguish untrusted form data from instructions. * Capability inventory: Ability to execute shell commands through the membrane CLI, including 'membrane action run' and 'membrane request'. * Sanitization: No explicit validation or sanitization of retrieved entry content is performed before processing.
Audit Metadata