livestorm
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage globally via NPM. This is a vendor-provided tool used to interact with the Membrane platform. - [COMMAND_EXECUTION]: The skill uses the
membraneCLI to perform several operations, including: - Authenticating the user session (
membrane login). - Managing connections to the Livestorm service (
membrane connect,membrane connection list). - Executing pre-defined actions and custom API requests (
membrane action run,membrane request). - [PROMPT_INJECTION]: This skill ingests data from the Livestorm API (e.g., participant names, notes, reports). While this presents a potential surface for indirect prompt injection if external data contains malicious instructions, it is a standard part of the skill's integration functionality. No specific boundary markers or sanitization steps are explicitly defined in the provided markdown file.
Audit Metadata