talend
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @membranehq/cli package from the official NPM registry, which is a standard procedure for utilizing the vendor's integration tools.- [COMMAND_EXECUTION]: The skill utilizes the membrane CLI to manage connections and perform actions on Talend. This involves the agent executing shell commands, including those that incorporate JSON-formatted input parameters.- [PROMPT_INJECTION]: The skill processes external data retrieved from the Talend API (such as action schemas and job results), creating an indirect prompt injection surface where untrusted data could attempt to influence agent behavior.
- Ingestion points: Untrusted data enters the agent's context through the output of commands like membrane action list and membrane action run.
- Boundary markers: The skill instructions do not specify the use of delimiters or ignore-instructions warnings for the processed API data.
- Capability inventory: The skill possesses command execution capabilities through the membrane CLI (e.g., membrane action run, membrane request).
- Sanitization: There is no mention of sanitization, validation, or filtering of the content received from the Talend API before it is processed by the agent.
Audit Metadata