sellercloud
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the @membranehq/cli package via npm to interact with the Membrane platform. This is a vendor-supplied tool required for the skill's operation.
- [COMMAND_EXECUTION]: The instructions involve executing various membrane CLI commands to perform authentication, discovery, and execution of Sellercloud operations.
- [PROMPT_INJECTION]: The skill processes external data from Sellercloud (e.g., order notes, product details) which could potentially contain indirect prompt instructions.
- Ingestion points: API responses from membrane action run and membrane request commands in SKILL.md.
- Boundary markers: No explicit delimiters or instructions are provided to the agent to ignore potentially malicious content within retrieved data.
- Capability inventory: The agent can execute shell commands via the membrane CLI, which can modify external state or read further data.
- Sanitization: There are no specific sanitization or validation steps described for the data retrieved from external endpoints.
Audit Metadata