scrapingbot
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli package via npm, which is the official tool provided by the vendor for this integration.
- [COMMAND_EXECUTION]: The instructions guide the agent to execute various membrane CLI commands to manage connections and run actions. These are standard operations for the tool's intended use.
- [PROMPT_INJECTION]: The skill has a potential surface for indirect prompt injection because it processes content scraped from external websites. Ingestion points: Web data retrieved via ScrapingBot (referenced in SKILL.md). Boundary markers: Absent. Capability inventory: Use of membrane CLI for API interaction. Sanitization: Not specified.
- [SAFE]: Credential management is handled through Membrane's secure connection architecture, avoiding the risk of hardcoded or exposed API keys.
Audit Metadata