procfu
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill directs the user to install the official Membrane CLI package (
@membranehq/cli) from the public npm registry. This package is maintained by the skill's author (membrane) and is necessary for the skill's core functionality.- [COMMAND_EXECUTION]: The skill instructions rely on executing themembranecommand-line utility for session management, connection searching, and running integrated actions. These commands are part of the intended integration workflow.- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection by processing data from the ProcFu API. - Ingestion points: External data enters the agent context through the outputs of the
membrane action runandmembrane requestcommands. - Boundary markers: No specific delimiters or safety instructions are defined to separate untrusted external data from the agent's logic.
- Capability inventory: The skill can perform network requests and execute CLI commands, which could be leveraged if malicious instructions were successfully injected.
- Sanitization: The skill does not implement documented filtering or validation of the data retrieved from the external API.
Audit Metadata