parseur
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the @membranehq/cli package from the official NPM registry to enable interaction with the Parseur service.
- [COMMAND_EXECUTION]: Utilizes the membrane command-line interface to perform actions such as logging in, connecting to connectors, and running data extraction actions.
- [PROMPT_INJECTION]: The skill processes external document data which creates a potential surface for indirect prompt injection.
- Ingestion points: Document content and metadata fetched from Parseur via the membrane request and action run commands (SKILL.md).
- Boundary markers: No specific delimiters or instructions to ignore embedded commands are provided for handling the retrieved data.
- Capability inventory: The skill allows execution of shell commands and API requests via the membrane CLI (SKILL.md).
- Sanitization: No explicit sanitization or content validation mechanisms are described in the instructions.
Audit Metadata