jira
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends the installation of the official Membrane CLI (
@membranehq/cli) from the npm registry, which is the standard orchestration tool provided by the vendor. - [COMMAND_EXECUTION]: Uses legitimate
membraneCLI commands to perform authentication and execute Jira actions. This is consistent with the skill's stated purpose of integrating with the Membrane platform. - [PROMPT_INJECTION]: The skill interacts with external data from Jira (issues, projects, and comments), which represents an indirect prompt injection surface.
- Ingestion points: Jira ticketing data retrieved via
membrane action runandmembrane action listas described inSKILL.md. - Boundary markers: Absent. The instructions do not specify the use of delimiters or warnings to ignore instructions embedded in the retrieved data.
- Capability inventory: The skill allows creating, updating, and transitioning issues, as well as adding or deleting comments.
- Sanitization: There is no explicit mention of sanitization or validation for the data ingested from Jira.
Audit Metadata