red-hat
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@membranehq/clipackage via NPM. This is a vendor-controlled tool used for authentication and API interaction. - [COMMAND_EXECUTION]: The skill relies on executing shell commands through the
membraneCLI to manage connections, search for actions, and interact with the Red Hat API. - [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it processes data from Red Hat (e.g., job details, vulnerability reports) which could be controlled by an attacker and used to manipulate the agent.
- Ingestion points: Red Hat API responses processed via
membrane action runandmembrane request. - Boundary markers: None identified in the provided skill instructions.
- Capability inventory: Local command execution via the
membraneCLI and proxied network access. - Sanitization: No specific sanitization or filtering of external Red Hat data is described before the data is passed to the agent context.
Audit Metadata