Skills
skills/membranedev/application-skills/netlify/Gen Agent Trust Hub

netlify

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Installs the @membranehq/cli package from the NPM registry to provide the required interface for the Membrane platform.
  • [COMMAND_EXECUTION]: Executes the membrane CLI to manage authenticated sessions and perform resource operations on Netlify sites, DNS records, and environment variables.
  • [PROMPT_INJECTION]: Processes data retrieved from Netlify APIs, which represents a surface for indirect prompt injection.
  • Ingestion points: Output from Netlify API calls via membrane action run or membrane request in SKILL.md.
  • Boundary markers: Absent; the skill does not define specific delimiters for external data.
  • Capability inventory: Resource management (create/delete sites and DNS), deployment triggers, and environment variable configuration.
  • Sanitization: Absent; the skill does not specify validation or filtering for data retrieved from the API.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 11:23 PM