quantil
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage via npm. This is a first-party utility provided by the author (membranedev) to facilitate secure integration and credential management. - [COMMAND_EXECUTION]: The instructions guide the agent to perform tasks using the
membranecommand-line tool. These operations include searching for connectors, managing connections, and executing API actions, which are the primary intended functions of the skill. - [PROMPT_INJECTION]: The skill processes data from the QUANTIL API. While this presents an inherent surface for indirect prompt injection common to data-integration tools, the skill utilizes structured actions and vendor-managed proxy requests which help maintain boundary isolation.
Audit Metadata