printnode
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install @membranehq/cli from npm and uses npx to run the latest version of the CLI. These are official tools provided by the vendor (membranedev).
- [COMMAND_EXECUTION]: The skill relies on shell commands such as membrane login, membrane connect, and membrane action run to interact with the PrintNode API. This is the intended primary functionality of the skill.
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface because the agent processes output from CLI commands that could theoretically contain instructions.
- Ingestion points: Output from membrane action list, membrane action run, and membrane connection list in SKILL.md.
- Boundary markers: None present in the instructions to delimit command output from agent instructions.
- Capability inventory: Package installation, authentication management, and arbitrary API request execution via membrane request in SKILL.md.
- Sanitization: No explicit validation or filtering of CLI output is specified.
Audit Metadata