mindbreeze
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package from npm using npm install -g @membranehq/cli. This is the official command-line interface for the Membrane platform, which is the vendor of this skill.
- [COMMAND_EXECUTION]: The documentation provides several examples of shell commands using the membrane CLI, such as membrane login, membrane connect, and membrane action run. These commands are used to manage connections and interact with the Mindbreeze API through the Membrane platform.
- [PROMPT_INJECTION]: The skill is designed to process data from external sources (Mindbreeze API) which presents a surface for indirect prompt injection.
- Ingestion points: Data is ingested via the output of membrane action run and membrane request commands which fetch data from the Mindbreeze engine.
- Boundary markers: None are explicitly defined in the provided instructions.
- Capability inventory: The skill uses the membrane CLI to execute actions and make HTTP requests.
- Sanitization: No specific sanitization or filtering steps are described for the ingested data.
Audit Metadata