Skills
skills/membranedev/application-skills/processout/Gen Agent Trust Hub

processout

Pass

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli global package from the vendor's official registry to manage authentication and interactions with the ProcessOut service.
  • [COMMAND_EXECUTION]: Shell commands are used via the membrane CLI tool to log in, search for actions, and execute API requests to the ProcessOut platform.
  • [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it processes external data from the ProcessOut API.
  • Ingestion points: Data is ingested into the agent context through the output of membrane action run and membrane request commands described in SKILL.md.
  • Boundary markers: The instructions do not define specific delimiters or guardrails to separate external data from the agent's core instructions.
  • Capability inventory: The agent has the ability to execute shell-based CLI commands and perform network requests via the Membrane proxy.
  • Sanitization: No explicit sanitization or validation mechanisms are implemented for the data retrieved from external endpoints.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 23, 2026, 02:42 AM