lmnt
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI tool to perform operations such as listing actions, running API requests, and managing account connections. - [EXTERNAL_DOWNLOADS]: The skill documentation instructs the installation of the
@membranehq/clipackage from the NPM registry and the use ofnpxto execute vendor-specific tools. - [PROMPT_INJECTION]: The skill processes data retrieved from the LMNT API, which creates a surface for indirect prompt injection. * Ingestion points: External data from the LMNT API enters the agent context through the outputs of
membrane action runandmembrane requestcommands documented in SKILL.md. * Boundary markers: No explicit delimiters or instructions are used to separate ingested data from system instructions. * Capability inventory: The skill provides the agent with capabilities to execute CLI commands and perform proxied network requests (SKILL.md). * Sanitization: The skill does not specify any sanitization, validation, or filtering of the content retrieved from the external API before it is processed by the agent.
Audit Metadata