railway
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: Uses the
membraneCLI to interact with Railway, allowing management of projects, services, and deployments via shell commands. - [EXTERNAL_DOWNLOADS]: Installs the
@membranehq/clipackage from the npm registry to provide the necessary integration tools. - [PROMPT_INJECTION]: The skill processes data from Railway's API, presenting a potential surface for indirect prompt injection if API responses contain unexpected instructions; however, it encourages the use of structured JSON which mitigates this risk.
Audit Metadata