splunk
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the official @membranehq/cli utility from the NPM registry to facilitate integration management. This is a vendor-owned resource used for authentication and service interaction.
- [COMMAND_EXECUTION]: The skill provides instructions to execute various shell commands through the membrane CLI for connection setup, action discovery, and running Splunk queries.
- [PROMPT_INJECTION]: The skill processes data and logs from Splunk, creating a potential surface for indirect prompt injection through untrusted machine data.
- Ingestion points: Splunk data enters the agent context via the membrane action run and membrane request commands in SKILL.md.
- Boundary markers: No specific delimiters or instructions to ignore embedded content are defined for the processed data.
- Capability inventory: The skill possesses the ability to execute shell commands via the membrane CLI across its operations.
- Sanitization: No data validation or sanitization routines are implemented for the content retrieved from the Splunk API.
Audit Metadata