Skills
skills/membranedev/application-skills/reputation-lyncs/Gen Agent Trust Hub

reputation-lyncs

Pass

Audited by Gen Agent Trust Hub on Apr 23, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Installs the @membranehq/cli package from the public npm registry, which is the official tool for the Membrane platform.
  • [COMMAND_EXECUTION]: Employs the membrane CLI to handle authentication, discover API actions, and execute requests against the Reputation Lyncs API.
  • [PROMPT_INJECTION]: Identifies a surface for indirect prompt injection as the skill processes external content such as reviews and social media mentions.
  • Ingestion points: Data returned from the Reputation Lyncs API via membrane action run or membrane request commands.
  • Boundary markers: The skill does not define specific delimiters for separating untrusted external data from agent instructions.
  • Capability inventory: Access to the membrane CLI allows the agent to perform actions and make network requests based on processed data.
  • Sanitization: No explicit validation or filtering of external data is performed before it is presented to the agent context.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 23, 2026, 10:49 PM