request
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from external API responses via the Membrane CLI, which creates a potential surface for indirect prompt injection where malicious instructions could influence agent behavior.\n
- Ingestion points: Data is ingested through the outputs of the
membrane action list,membrane action run, andmembrane requestcommands.\n - Boundary markers: No specific delimiters or instructions are provided to help the agent distinguish between data and instructions when processing API output.\n
- Capability inventory: The skill facilitates network operations and automated workflow execution via the
membraneCLI tool.\n - Sanitization: The instructions do not describe any mechanisms for validating or sanitizing the content retrieved from external API endpoints.\n- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the npm registry. This is a vendor-owned resource used for interacting with the Membrane platform and manages the integration lifecycle securely.
Audit Metadata