intelliprint
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage globally via NPM. This is a tool provided by the author's organization for interacting with their platform. - [COMMAND_EXECUTION]: The skill relies on executing various shell commands using the
membraneCLI to perform login, establish connections, and run actions. - [DATA_EXFILTRATION]: The skill exhibits an indirect prompt injection surface as it ingests and processes data from external tool outputs (Membrane API responses).
- Ingestion points: External data enters the agent context through
membrane action listandmembrane action runcommands. - Boundary markers: The instructions do not specify the use of delimiters or markers to separate untrusted tool output from the system prompt.
- Capability inventory: The skill has the capability to execute shell commands and install packages.
- Sanitization: There is no mention of sanitization or validation of the data received from the external API before it is processed by the agent.
Audit Metadata