plasmic
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches and installs the official Membrane CLI (
@membranehq/cli) from the public npm registry to manage integrations and authentication. - [COMMAND_EXECUTION]: Uses the
membranecommand-line utility to perform operations such as searching for connectors, establishing authenticated connections, and executing API actions. - [PROMPT_INJECTION]: Processes external data from the Plasmic API, which serves as a potential surface for indirect prompt injection. The skill recommends using pre-built actions which helps structure the data received.
- Ingestion points: Output data from
membrane action runandmembrane requestcommands. - Boundary markers: Absent in the documentation.
- Capability inventory: Ability to execute arbitrary shell commands through the
membraneCLI. - Sanitization: Relies on the agent to parse and interpret JSON responses from the command line.
Audit Metadata