Skills
skills/membranedev/application-skills/hex/Gen Agent Trust Hub

hex

Pass

Audited by Gen Agent Trust Hub on Apr 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Downloads and installs the vendor's official command-line interface (@membranehq/cli) from the public npm registry to facilitate communication with the platform.
  • [COMMAND_EXECUTION]: Utilizes shell commands via the membrane CLI to authenticate, manage connections, and execute actions against the Hex API.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through data retrieved from the Hex workspace.
  • Ingestion points: Untrusted data enters the agent context through the output of membrane action run, membrane action list, and membrane request commands documented in SKILL.md.
  • Boundary markers: The instructions do not specify any delimiters or safety markers to isolate data retrieved from the external API.
  • Capability inventory: The skill possesses the capability to execute shell commands and perform state-changing API requests via the membrane CLI tool.
  • Sanitization: There is no evidence of sanitization or validation of the content returned from the external Hex workspace before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 21, 2026, 10:02 PM