scaled-access
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use the
membraneCLI to manage connections and execute actions against the Scaled Access platform. This includes commands for authentication, searching connectors, and running specific API actions or proxying requests. - [EXTERNAL_DOWNLOADS]: The instructions guide the user or agent to install the
@membranehq/clipackage globally via NPM to enable the integration functionality. - [PROMPT_INJECTION]: The skill processes data retrieved from the Scaled Access API, which introduces a surface for indirect prompt injection if external records contain instructions intended to influence the agent.
- Ingestion points: API responses and record data retrieved through the
membrane action runandmembrane requestcommands (SKILL.md). - Boundary markers: The instructions do not specify the use of delimiters or markers to isolate external data from the agent's primary instructions.
- Capability inventory: The agent has the capability to execute shell commands using the
membraneCLI (SKILL.md). - Sanitization: There is no mention of sanitization or validation logic for the data returned from external API calls.
Audit Metadata