shortcut
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Membrane CLI tool (@membranehq/cli) via npm, which is a trusted and expected dependency for this platform.
- [COMMAND_EXECUTION]: Uses the Membrane CLI to perform standard Shortcut operations such as listing stories and projects.
- [PROMPT_INJECTION]: Identifies an indirect prompt injection surface when handling external project data. 1. Ingestion points: Shortcut stories, epics, and comments. 2. Boundary markers: None specified. 3. Capability inventory: The skill can read, create, and update Shortcut resources. 4. Sanitization: None documented in the instructions.
Audit Metadata