questdb
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to install the
@membranehq/clipackage from the NPM registry. This utility is a vendor-provided tool necessary for managing the database connection and executing actions. - [COMMAND_EXECUTION]: The skill uses the
membranecommand-line interface to perform administrative tasks, such as logging in, searching for connectors, and listing connections. These operations are restricted to the functionality provided by the CLI. - [DATA_EXFILTRATION]: The skill facilitates data movement between the agent's environment and the QuestDB instance via the Membrane proxy. It handles authentication headers and connection lifecycle management server-side to prevent credential leakage.
- [PROMPT_INJECTION]: Evaluation of the data ingestion surface:
- Ingestion points: Data enters the context via
membrane action runresults andmembrane requestresponses from the QuestDB API. - Boundary markers: No explicit instructions to ignore embedded instructions in database records are provided in the skill body.
- Capability inventory: The skill allows shell execution of the
membraneCLI, which can perform network operations (API requests) and data modifications within QuestDB. - Sanitization: There is no explicit sanitization of database results before they are processed by the agent. However, as a database management skill, this behavior is consistent with its primary purpose and carries no specific indicators of malicious intent.
Audit Metadata