rapidapi
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill guides the user to install the
@membranehq/clipackage from the official npm registry to facilitate communication with the platform. - [COMMAND_EXECUTION]: Employs the
membranecommand-line utility for managing connections, discovering API actions, and executing requests. - [PROMPT_INJECTION]: The skill processes data returned from external APIs through the CLI tool, creating a surface for indirect prompt injection. Ingestion points: Results from
membrane action list,membrane action run, andmembrane requestcommands. Boundary markers: No explicit markers or instructions to ignore embedded content are present in the skill text. Capability inventory: The skill uses the Membrane CLI to execute actions and perform network operations. Sanitization: The skill does not define specific methods for sanitizing or validating external data before it is processed by the agent.
Audit Metadata