hyperping
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the vendor's command-line interface, @membranehq/cli, from the official NPM registry to facilitate service integration.
- [COMMAND_EXECUTION]: Shell commands are used to interact with the membrane CLI for authentication, connection management, and executing actions against the Hyperping API.
- [CREDENTIALS_UNSAFE]: The skill follows security best practices by instructing the agent to never request or handle user API keys directly, relying instead on the platform's automated credential management.
- [PROMPT_INJECTION]: The skill processes data from external API responses, representing a potential surface for indirect prompt injection.
- Ingestion points: Output from membrane action list and membrane request commands in SKILL.md.
- Boundary markers: Not explicitly defined in the instructions.
- Capability inventory: Execution of local CLI commands via membrane CLI.
- Sanitization: Not explicitly implemented in the provided markdown.
Audit Metadata