microsoft-power-bi
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from npm. This is a vendor-provided tool necessary for the skill's core functionality. - [COMMAND_EXECUTION]: The skill uses the
membraneCLI to interact with the Microsoft Power BI API. This includes commands for authentication, searching for connectors, and running actions such as listing, creating, and deleting reports, datasets, and workspaces. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it retrieves and processes data from an external platform (Microsoft Power BI).
- Ingestion points: Data is ingested through various list and get actions (e.g.,
list-workspaces,list-reports,get-dataset) and arbitrary API requests viamembrane request. - Boundary markers: The instructions do not specify any delimiters or warnings for the agent to ignore instructions embedded within the retrieved data.
- Capability inventory: The skill possesses significant capabilities, including the ability to create, update, and delete resources within the user's Power BI account.
- Sanitization: There is no indication of sanitization or validation of the data retrieved from external sources before it is processed by the agent.
Audit Metadata