Skills
skills/membranedev/application-skills/successeve/Gen Agent Trust Hub

successeve

Pass

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package globally via npm and provides examples using npx to fetch the latest version. This is the official command-line tool for the Membrane platform.
  • [COMMAND_EXECUTION]: The skill utilizes the membrane command-line tool for various integration tasks, including authentication, resource discovery, and executing actions against the Successeve API.
  • [PROMPT_INJECTION]: The skill interacts with external data from the Successeve API, which presents an indirect prompt injection surface.
  • Ingestion points: Data is ingested through the membrane action run and membrane request commands.
  • Boundary markers: The skill does not define specific delimiters or instructions to ignore embedded commands within the API content.
  • Capability inventory: The agent maintains the ability to execute shell commands and network requests via the membrane CLI.
  • Sanitization: No filtering or validation is implemented for the content returned from external Successeve endpoints.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 20, 2026, 10:42 PM