proofpoint
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install the
@membranehq/clipackage. This is a legitimate utility provided by the vendor to facilitate the integration. - [COMMAND_EXECUTION]: The integration operates by executing
membraneCLI commands to authenticate, list connections, and perform API actions. This is the intended operational model of the skill. - [INDIRECT_PROMPT_INJECTION]: The skill accesses external data from Proofpoint, including email metadata, threat insights, and campaign details. This represents an ingestion point for untrusted data that the agent will process, which is inherent to the purpose of a security monitoring integration.
Audit Metadata