hyperext-sage-50
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Provides instructions to install the official Membrane CLI tool (@membranehq/cli) from the public npm registry. This is a vendor-owned resource required for the skill's operation.
- [COMMAND_EXECUTION]: Uses the membrane CLI tool for legitimate data management tasks such as creating connections and running accounting actions.
- [PROMPT_INJECTION]: The skill facilitates the ingestion of external accounting records (customers, invoices, products) from Sage 50. While this presents a surface for indirect prompt injection, it is an expected part of the skill's primary purpose. Ingestion points include multiple list and get actions described in SKILL.md. Capability inventory includes subprocess execution via the membrane CLI. No specific boundary markers or sanitization protocols for the external data are mentioned in the documentation.
Audit Metadata