progress-sitefinity
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends installing the @membranehq/cli npm package, which is the official command-line interface for the vendor's platform.
- [COMMAND_EXECUTION]: Utilizes the membrane CLI for authentication, action execution, and proxying API requests to Progress Sitefinity.
- [PROMPT_INJECTION]: Ingestion of data from an external CMS represents a surface for indirect prompt injection. 1. Ingestion points: Results from 'membrane action run' or 'membrane request'. 2. Boundary markers: None specified. 3. Capability inventory: Shell command execution via membrane CLI. 4. Sanitization: Not specified in instructions.
Audit Metadata