q2
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/cliNode.js package globally. This is an official utility provided by the vendor for platform interaction. - [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line tool to perform operations such as authentication, connector discovery, and executing actions against the Q2 API. - [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by retrieving and processing data from the external Q2 API.
- Ingestion points: Data retrieved via
membrane action runandmembrane requestas described in SKILL.md. - Boundary markers: None present; the skill does not use specific delimiters to isolate external data from instructions.
- Capability inventory: The skill can execute various CLI commands that interact with the external service to read and write data.
- Sanitization: No explicit sanitization or validation of the data retrieved from the API is performed before it is processed by the agent.
Audit Metadata