groovehq
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructions involve installing the
@membranehq/clipackage from the NPM registry. This is an official utility provided by the vendor for interacting with their platform and managing connections. - [COMMAND_EXECUTION]: The instructions direct the agent to execute shell commands using the
membraneCLI. These commands are used for platform login, searching for connectors, establishing connections, and running API actions. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted data retrieved from GrooveHQ tickets, messages, and customer records. * Ingestion points: Customer support tickets, messages, and customer profiles retrieved via
list-tickets,get-customer, orlist-messages. * Boundary markers: The instructions do not specify the use of delimiters or warnings to ignore instructions embedded in the retrieved data. * Capability inventory: The skill utilizes themembraneCLI which allows for arbitrary action execution and raw HTTP requests viamembrane request. * Sanitization: No explicit sanitization or validation of the retrieved external content is mentioned before it is processed by the agent.
Audit Metadata