quentn
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
membraneCLI to manage connections and execute actions. This includes logging in, searching for connectors, and running specific Quentn integration logic through the platform's command-line interface. - [EXTERNAL_DOWNLOADS]: The instructions guide the user to install the
@membranehq/clipackage from the public NPM registry. This is a standard procedure for using the vendor's development tools. - [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it processes data retrieved from the Quentn API (such as notes, contact details, or email content). If this external data contains malicious instructions, it could influence the agent's behavior during processing.
- Ingestion points: Quentn API responses retrieved via
membrane action runandmembrane request. - Boundary markers: None explicitly defined in the provided instructions.
- Capability inventory: File system access and network operations via the
membraneCLI. - Sanitization: Not specified in the instruction markdown; relies on the agent's internal handling of tool outputs.
Audit Metadata