linqs
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user or agent to install the Membrane CLI tool (
@membranehq/cli) from the official npm registry. - [COMMAND_EXECUTION]: Utilizes multiple shell commands to interact with the Membrane platform, including authentication (
membrane login), connection setup (membrane connect), and action execution (membrane action run). - [PROMPT_INJECTION]: Identifies an attack surface for indirect prompt injection as the skill processes data from external actions and accepts input for running those actions.
- Ingestion points: Data returned from
membrane action listandmembrane action run, as well as input passed to action parameters. - Boundary markers: No explicit delimiters or instructions are provided to the agent to treat external data as untrusted or to ignore embedded instructions.
- Capability inventory: The CLI can perform network operations and data management on the Linqs platform.
- Sanitization: There are no instructions for sanitizing or escaping the data retrieved from the external service before processing it.
Audit Metadata