klenty
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes external data from Klenty (such as prospect details and email engagements), which creates a potential surface for indirect prompt injection. Untrusted data from the CRM could theoretically contain instructions intended to influence the agent.
- Ingestion points: Data enters the context via
membrane action runandmembrane requestcalls to the Klenty API. - Boundary markers: The instructions do not define specific delimiters to separate Klenty data from the system prompt.
- Capability inventory: The skill has the ability to perform network requests and modify CRM data (e.g., stopping cadences or updating prospects) using the
membraneCLI. - Sanitization: No specific validation or sanitization of the external API responses is documented within the skill scripts.
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the official Membrane CLI tool (
@membranehq/cli) from the NPM registry to facilitate the integration. - [COMMAND_EXECUTION]: The skill uses the
membranecommand-line utility to perform actions like authentication, connection management, and executing API calls.
Audit Metadata