similarweb-digitalrank-api
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the global installation of the @membranehq/cli package from the NPM registry. This is the official tool from the vendor used to manage the integration and authentication process.\n- [COMMAND_EXECUTION]: The instructions utilize the membrane CLI for various tasks including authentication (membrane login), connection management (membrane connect), and executing API actions (membrane action run).\n- [PROMPT_INJECTION]: The skill processes data from the Similarweb DigitalRank API, which represents an indirect prompt injection surface.\n
- Ingestion points: External data is ingested through membrane action run and membrane request commands executed at runtime.\n
- Boundary markers: No specific delimiters or "ignore embedded instructions" warnings are provided in the documentation to isolate the API response from the agent's instructions.\n
- Capability inventory: The agent has the ability to execute CLI commands, perform network requests, and manage connections via the membrane tool.\n
- Sanitization: No explicit sanitization or validation logic is defined in the skill for processing the Similarweb API responses.
Audit Metadata