loyaltylion
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli Node.js package to facilitate interaction with the LoyaltyLion service.
- [COMMAND_EXECUTION]: The skill executes the membrane CLI tool to perform authentication, connection management, and data operations against the LoyaltyLion API.
- [PROMPT_INJECTION]: The skill processes data from LoyaltyLion API responses which could contain untrusted content. Ingestion points: API responses retrieved via membrane action run and membrane request commands. Boundary markers: None. Capability inventory: Command execution via the membrane CLI for operations such as create-order, add-points, and remove-points. Sanitization: None.
Audit Metadata