Skills
skills/membranedev/application-skills/jupiterone/Gen Agent Trust Hub

jupiterone

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill recommends installing the @membranehq/cli package, which is the official command-line tool provided by the vendor for platform interaction.
  • [COMMAND_EXECUTION]: Instructs the agent to use the membrane CLI for managing connections and executing actions against the JupiterOne API. These commands are localized to the platform's ecosystem and used for intended integration logic.
  • [PROMPT_INJECTION]: The skill processes external data from JupiterOne assets and API responses, creating a surface for indirect prompt injection.
  • Ingestion points: Data retrieved via membrane action run and membrane request commands.
  • Boundary markers: None explicitly defined in the prompt instructions.
  • Capability inventory: Execution of membrane CLI commands via the shell.
  • Sanitization: No explicit sanitization or validation of the external data content is described in the skill instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 07:13 PM