Skills
skills/membranedev/application-skills/smartrmail/Gen Agent Trust Hub

smartrmail

Pass

Audited by Gen Agent Trust Hub on Apr 21, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to use the membrane CLI for managing service connections and executing actions. This includes logging in, searching for connectors, and running specific integration tasks.
  • [EXTERNAL_DOWNLOADS]: The instructions require the installation of the @membranehq/cli package from the official NPM registry. This is a standard procedure for using the vendor's tooling and originates from a trusted source associated with the skill author.
  • [PROMPT_INJECTION]: The skill is designed to retrieve and process data from the SmartrMail API, which presents a surface for indirect prompt injection if external data (such as email content or subscriber notes) contains instructions intended to influence the agent.
  • Ingestion points: Data is fetched from the SmartrMail API via membrane action run and membrane request commands (found in SKILL.md).
  • Boundary markers: No explicit delimiters or warnings to ignore embedded instructions are present in the documentation.
  • Capability inventory: The skill utilizes the membrane CLI to execute shell commands and perform network operations.
  • Sanitization: The instructions do not specify any validation or sanitization steps for data retrieved from the API before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 21, 2026, 07:44 PM