recruiterflow
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package from the npm registry to manage Recruiterflow integrations. This is a vendor-provided tool.
- [PROMPT_INJECTION]: The skill processes external data from Recruiterflow (such as candidate records and emails) which can serve as an injection vector for indirect prompt instructions. 1. Ingestion points: Recruiterflow data objects retrieved via the CLI (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Execution of arbitrary actions and proxied API requests via the membrane command-line tool (SKILL.md). 4. Sanitization: None identified within the provided instructions.
Audit Metadata