onedrive
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli global package from npm, which is the official tool provided by the vendor.
- [COMMAND_EXECUTION]: The skill operates by executing shell commands using the membrane CLI to perform OneDrive actions and make API requests.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection. 1. Ingestion points: Data is ingested from OneDrive through actions such as list-folder-contents and get-item-by-path. 2. Boundary markers: The skill instructions do not include delimiters or specific instructions to ignore embedded commands in external data. 3. Capability inventory: The skill has the capability to execute actions and make network requests via the membrane CLI. 4. Sanitization: No content validation or escaping is described for the data retrieved from the external service.
Audit Metadata