sheetsu
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the official @membranehq/cli package from the npm registry to enable interaction with the Membrane platform.
- [COMMAND_EXECUTION]: Employs the membrane CLI tool for various operations including authentication, connector discovery, and executing actions against the Sheetsu API.
- [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection as it is designed to ingest and process data from external spreadsheets. Ingestion points: Data retrieved from Sheetsu via the membrane action run and request commands. Boundary markers: Absent; the skill does not define clear delimiters to separate untrusted data from instructions. Capability inventory: The agent has access to the membrane CLI for network requests and action execution. Sanitization: The instructions do not include steps to sanitize or validate spreadsheet content before processing.
Audit Metadata