klaro-app
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the public NPM registry. This tool is provided by the vendor to facilitate the integration. - [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line interface to manage authentication, discover API actions, and execute requests against the Klaro app. These operations are performed within the vendor's controlled environment. - [DATA_EXFILTRATION]: The skill interacts with external Klaro app data via the
membrane requestproxy. This utilizes the vendor's managed infrastructure to securely handle authentication headers and data transit without exposing raw credentials to the agent. - [PROMPT_INJECTION]: The skill processes data from the Klaro app which represents an indirect prompt injection surface. Evidence Chain: 1. Ingestion point: External data retrieved via action results and API proxy responses in
SKILL.md. 2. Boundary markers: Absent in the instructional text. 3. Capability inventory: The skill can execute CLI commands and network requests via themembranetool. 4. Sanitization: Handled by the Membrane platform's connector logic.
Audit Metadata