sap-hana
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli package, which is the vendor's official tool for managing integrations. This dependency is hosted on the public npm registry and is required for the skill's functionality.
- [COMMAND_EXECUTION]: The skill uses the
membraneCLI to interact with SAP S4 HANA, including listing connections, running pre-defined actions, and sending proxy requests to the API. These commands are part of the intended integration logic. - [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as it processes data retrieved from SAP S4 HANA. Ingestion points: Output from
membrane action runandmembrane requestcommands (SKILL.md). Boundary markers: Absent. Capability inventory: The agent can execute CLI commands and make arbitrary network requests through the vendor's proxy (SKILL.md). Sanitization: Absent. No malicious instructions were found in the static content.
Audit Metadata