mailercloud
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill interacts with external data from the Mailercloud API, which introduces a surface for indirect prompt injection. Maliciously crafted content within email campaigns or subscriber records could potentially influence the agent's behavior when processed.
- Ingestion points: Data returned from
membrane action runandmembrane requestcommands (e.g., email bodies, subscriber names). - Boundary markers: The skill does not define specific delimiters or instructions to ignore embedded commands in the processed data.
- Capability inventory: The agent has the ability to execute further Mailercloud actions or send arbitrary network requests via the Membrane proxy.
- Sanitization: No explicit validation or filtering of the API responses is mentioned before the data is presented to the agent.
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the
@membranehq/clipackage from the public NPM registry. This is a legitimate utility provided by the vendor to manage integrations and authentication.
Audit Metadata