syncro
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the official Membrane CLI (@membranehq/cli) from the npm registry. This is a trusted vendor tool required for the skill's primary functionality.
- [COMMAND_EXECUTION]: The agent is instructed to execute various membrane CLI commands to manage connections and run actions. These are standard operations for interacting with the platform's API and do not involve arbitrary command execution.
- [PROMPT_INJECTION]: The skill processes untrusted data from the Syncro platform (such as tickets, leads, and emails), which creates an indirect prompt injection surface.
- Ingestion points: Data returned from membrane action run calls targeting the Syncro API.
- Boundary markers: No explicit delimiters or instructions are provided to the agent to treat external content as untrusted.
- Capability inventory: The agent has the capability to execute shell commands (via the Membrane CLI) and modify external data based on its interpretation of the ingested content.
- Sanitization: No sanitization or validation of external content is specified before the data is processed by the agent.
Audit Metadata