nextcloud
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install
@membranehq/clifrom the official NPM registry. This is a standard utility provided by the vendor for managing integrations. - [COMMAND_EXECUTION]: The skill uses the
membranecommand-line interface to perform actions such as logging in, connecting to Nextcloud, and executing API requests. These commands are scoped to the Membrane ecosystem and the user's explicit connections. - [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection as it processes data retrieved from Nextcloud (such as file contents or metadata).
- Ingestion points: Data enters the agent's context through
membrane action runormembrane requestwhen fetching Nextcloud files, folders, or user information. - Boundary markers: No specific delimiters are defined in the skill to isolate Nextcloud data from instructions.
- Capability inventory: The skill can read/write files and manage metadata in Nextcloud, and execute shell commands via the
membraneCLI. - Sanitization: No explicit sanitization or filtering of Nextcloud content is performed before processing.
Audit Metadata