height
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill directs users to install
@membranehq/clifrom the npm registry. This is the official command-line interface provided by the vendor for managing integrations. - [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform various tasks, including user authentication (membrane login), connection management (membrane connect), and executing actions on the Height platform (membrane action run). These operations are required for the skill's functionality. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it ingests and processes data from the Height API.
- Ingestion points: Data is retrieved from the Height API via
membrane action runandmembrane requestcommands as described in SKILL.md. - Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the provided instructions.
- Capability inventory: The agent can execute shell commands via the
membraneCLI and perform network operations through the Membrane proxy. - Sanitization: No evidence of sanitization or filtering of API responses is provided in the skill definition.
Audit Metadata