Skills
skills/membranedev/application-skills/signwell/Gen Agent Trust Hub

signwell

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Installs the @membranehq/cli global package from the NPM registry. This package is a vendor-owned resource used for authentication and API communication.
  • [COMMAND_EXECUTION]: Executes membrane CLI commands to perform authentication (membrane login), connection management (membrane connect), and API interactions (membrane action run, membrane request).
  • [PROMPT_INJECTION]: Potential for indirect prompt injection due to processing external data from SignWell.
  • Ingestion points: External document data and user information retrieved via membrane action run and membrane request commands.
  • Boundary markers: Absent. No specific delimiters or warnings are used to isolate untrusted data.
  • Capability inventory: Subprocess execution of the membrane CLI tool.
  • Sanitization: Absent. External data is processed directly as returned by the API.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 02:01 PM