lodgify
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from npm, which is the official tool for the Membrane platform provided by the skill's author context. - [COMMAND_EXECUTION]: It uses the
membraneCLI to perform operations such as searching for connectors and executing API actions, which is the intended method for this integration. - [PROMPT_INJECTION]: The skill processes data from the external Lodgify API, creating a surface for potential indirect prompt injection from third-party data.
- Ingestion points: Data enters the agent context through
membrane action runandmembrane requestoutputs as specified in SKILL.md. - Boundary markers: The skill does not define explicit delimiters or instructions for the agent to ignore potential commands embedded in the Lodgify data.
- Capability inventory: The agent can perform write operations on the Lodgify account via the
membrane action runcommand. - Sanitization: There are no documented sanitization or validation steps for the data retrieved from the API before it is processed.
Audit Metadata