okra
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the
@membranehq/clipackage from the npm registry, which is the official command-line interface provided by the skill's authoring organization. - [COMMAND_EXECUTION]: It utilizes shell commands via the
membraneCLI to manage connections, discover available actions, and execute requests against the Okra API. - [PROMPT_INJECTION]: The skill presents a potential surface for indirect prompt injection when the agent interpolates data into CLI command arguments. Ingestion points: Data passed to the
--inputflag in themembrane action runcommand. Boundary markers: No explicit delimiters or boundary markers are defined in the command templates. Capability inventory: Execution of actions and API proxy requests via themembraneCLI. Sanitization: No explicit sanitization or validation steps are provided in the skill's instructions.
Audit Metadata