secureship
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install and run the
@membranehq/clipackage from npm to facilitate communication with the platform. - [COMMAND_EXECUTION]: The skill utilizes shell commands through the
membraneCLI to perform actions such as logging in, connecting to services, and executing API requests. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it retrieves and processes data from external Secureship API endpoints which could contain malicious instructions.
- Ingestion points: External data enters the agent's context via the output of
membrane action run,membrane action list, andmembrane requestcommands. - Boundary markers: The instructions do not specify the use of delimiters or protective labeling to differentiate untrusted external data from system instructions.
- Capability inventory: The skill is capable of performing network operations and executing secondary CLI commands based on the data it processes.
- Sanitization: There is no explicit logic described for sanitizing or validating the content fetched from the external API before the agent processes it.
Audit Metadata