icims
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use the Membrane CLI (
membrane) for various operations including authentication (login), connection management (connect), and data operations (action run,request).- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the@membranehq/clipackage from the npm registry. This package is the official tool provided by the platform vendor for interacting with their services.- [PROMPT_INJECTION]: The skill possesses an attack surface for indirect prompt injection by ingesting data from the iCIMS platform. - Ingestion points: Data retrieved from iCIMS (such as applicant profiles or job details) via
membrane action runandmembrane requestenters the agent context. - Boundary markers: Absent. The skill does not define specific delimiters or warnings to ignore instructions embedded in the retrieved data.
- Capability inventory: The skill allows for command execution and network requests via the Membrane CLI.
- Sanitization: Absent. There is no evidence of filtering or escaping external content before it is processed by the agent.
Audit Metadata