lob
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI (e.g.,membrane action run,membrane request) to interact with the Lob API. These commands are standard for the vendor's platform and used to execute predefined integration actions. - [EXTERNAL_DOWNLOADS]: The instructions direct the user to install
@membranehq/clivia NPM. This is the official command-line tool provided by the skill's vendor and is necessary for the skill's functionality. - [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it ingests and processes data from the Lob API (such as address details, templates, or letter content).
- Ingestion points: Data enters the agent context via
membrane action runandmembrane request(SKILL.md). - Boundary markers: None identified in the provided instructions.
- Capability inventory: The skill can execute shell commands via the CLI and perform network requests via the Membrane proxy (SKILL.md).
- Sanitization: No explicit sanitization or validation of the ingested API data is described in the skill instructions.
Audit Metadata