status-hero
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The documentation instructs the user to install the
@membranehq/clitool and execute commands for logging in, searching for connectors, and running actions. These operations are essential for the skill's functionality. - [EXTERNAL_DOWNLOADS]: The skill references the official Status Hero API documentation and downloads the Membrane CLI from the NPM registry.
- [CREDENTIALS_UNSAFE]: The skill identifies as using Membrane's secure connection management, which avoids the risks associated with manual credential handling by managing tokens server-side.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it retrieves and processes data provided by team members (such as check-in answers or reports). 1. Ingestion points: Data retrieved via
membrane action runandmembrane requestfrom Status Hero API endpoints. 2. Boundary markers: None are specified to distinguish between system instructions and processed data. 3. Capability inventory: The skill can perform network requests and execute actions that modify data. 4. Sanitization: No sanitization or validation of the ingested content is described.
Audit Metadata