mx-technologies
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user or agent to install the
@membranehq/clipackage globally from the npm registry. This is a vendor-owned resource used for the skill's primary functionality. - [COMMAND_EXECUTION]: The skill relies on executing various shell commands using the
membraneCLI tool, includingmembrane login,membrane search,membrane connect, andmembrane action run. These commands are used to manage authentication and interact with the MX Technologies API. - [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface by ingesting financial data (such as transaction descriptions or organization names) from MX Technologies.
- Ingestion points: Data is brought into the agent context via the output of
membrane action runandmembrane requestcommands. - Boundary markers: No explicit delimiters or instructions to ignore embedded commands within the financial data are provided.
- Capability inventory: The skill has access to shell command execution through the Membrane CLI.
- Sanitization: No sanitization or validation of the external transaction data is specified before it is processed by the agent.
Audit Metadata