imagekitio
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install @membranehq/cli globally via npm. This is a legitimate utility provided by the skill author to facilitate secure communication with the Membrane platform.
- [COMMAND_EXECUTION]: Extensive use of the membrane command-line tool to perform operations like authentication, searching for actions, and executing API calls. These commands are integral to the skill's functionality.
- [DATA_EXFILTRATION]: Network communication is initiated through the membrane CLI to interact with ImageKit.io and Membrane services. This behavior is documented and aligns with the skill's stated purpose of managing media assets.
- [PROMPT_INJECTION]: The skill processes data returned from the ImageKit.io API (e.g., file metadata, list of files), which introduces a surface for indirect prompt injection. Ingestion points: Data enters the agent context via the output of membrane action run and membrane request commands; Boundary markers: No explicit delimiters or instructions to ignore embedded content within the retrieved data are provided; Capability inventory: The skill possesses the ability to execute shell commands and perform network requests via the Membrane CLI; Sanitization: No explicit sanitization or validation of the external API responses is mentioned in the instructions.
Audit Metadata