scraptio
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install the
@membranehq/clipackage globally from the NPM registry. This is a legitimate tool provided by the skill's author to facilitate interactions with the Membrane platform. - [COMMAND_EXECUTION]: The skill's core functionality relies on executing shell commands via the
membraneCLI. This includes administrative tasks such asmembrane login,membrane connect, andmembrane action run. These commands are used to manage connections and execute scraping logic. - [PROMPT_INJECTION]: The skill is designed to interact with Scraptio, a web scraping and automation service. This creates an attack surface for indirect prompt injection, as the agent may ingest and process data from arbitrary external websites.
- Ingestion points: External data is retrieved via
membrane action runandmembrane requestcommands which fetch scraped content. - Boundary markers: The provided instructions do not include specific delimiters or 'ignore' instructions for the processed data.
- Capability inventory: The agent has the capability to execute further shell commands and network requests through the CLI tools defined in the skill.
- Sanitization: There is no explicit sanitization or validation logic described for the data retrieved from external sources.
Audit Metadata