mailify
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches and installs the @membranehq/cli package from the npm registry to enable interaction with the Membrane platform.
- [COMMAND_EXECUTION]: Utilizes the membrane CLI to perform administrative tasks such as logging in, creating connections, and executing actions against the Mailify API.
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by processing external data from the Mailify API. 1. Ingestion points: Mailify data such as Persons, Organizations, Deals, and Notes (SKILL.md). 2. Boundary markers: Absent; no explicit delimiters or instructions to disregard instructions within data are provided. 3. Capability inventory: The skill utilizes the membrane CLI to execute actions and perform web requests (SKILL.md). 4. Sanitization: No sanitization or validation of the ingested data is described in the instructions.
Audit Metadata