hibob
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to perform operations such as authentication, searching for connectors, and executing actions against the HiBob API. This is standard behavior for the vendor's integration framework. - [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the NPM registry. This package is the official command-line tool for the Membrane platform. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) as it processes untrusted data from the HiBob HRIS system. Ingestion points: HiBob API data including employee profiles, tasks, and survey responses (SKILL.md). Boundary markers: Absent. Capability inventory: Full write and request capabilities via
membrane action runandmembrane request(SKILL.md). Sanitization: No sanitization or validation of external content is described. This surface could allow maliciously crafted data within the HRIS to influence agent actions.
Audit Metadata