hookdeck
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the '@membranehq/cli' Node.js package, which is the official tool provided by the vendor.
- [COMMAND_EXECUTION]: The skill uses
membraneCLI commands to manage Hookdeck resources, perform authentication, and execute API actions. These are standard operations for this integration. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it retrieves and processes data from Hookdeck. Ingestion points include command outputs from
membrane action runandmembrane request. Boundary markers are not explicitly mentioned. Capabilities include modifying Hookdeck resources through the CLI. Sanitization is delegated to the vendor's CLI and platform.
Audit Metadata