Skills
skills/membranedev/application-skills/maxmind-minfraud/Gen Agent Trust Hub

maxmind-minfraud

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Installs the official Membrane CLI tool (@membranehq/cli) from the NPM registry to facilitate secure communication with the platform.
  • [COMMAND_EXECUTION]: Uses the membrane CLI to perform administrative tasks, connection management, and to execute specific fraud detection actions.
  • [PROMPT_INJECTION]: Identifies a surface for indirect prompt injection where untrusted data from the MaxMind API could influence agent behavior if it contains malicious instructions.
  • Ingestion points: External data enters the agent context through the outputs of the membrane action run and membrane request commands in SKILL.md.
  • Boundary markers: The instructions do not define explicit delimiters or security warnings to prevent the agent from obeying instructions embedded in the API data.
  • Capability inventory: The skill allows the agent to execute shell commands via the membrane CLI and perform arbitrary API requests through the proxy feature (SKILL.md).
  • Sanitization: No specific sanitization or filtering logic is described for the data retrieved from the external API.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 12:50 AM