infinity
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage via npm. This is a vendor-provided tool required for the skill to function and interact with the Membrane platform. - [COMMAND_EXECUTION]: The instructions utilize the
membranecommand-line utility to perform authentication, connection management, and API interactions. These commands are part of the standard operating procedures for the vendor's services. - [PROMPT_INJECTION]: The skill processes external content from the Infinity API (such as task titles, descriptions, and comments), which introduces a surface for indirect prompt injection. Ingestion points: Data fetched from Infinity via actions like
list-itemsandlist-commentsas described inSKILL.md. Boundary markers: None present. Capability inventory: The agent can run actions and make requests through the Membrane CLI. Sanitization: None described in the documentation.
Audit Metadata