tellmoney
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the
@membranehq/clipackage, which is the official tool provided by the vendor for platform interactions. - [COMMAND_EXECUTION]: Uses the
membraneCLI to execute various lifecycle tasks such as searching for connectors and running actions. These commands are standard for the tool. - [INDIRECT_PROMPT_INJECTION]: The skill processes data from the Tell.money API, which is an external source.
- Ingestion points: API responses from Tell.money (SKILL.md).
- Boundary markers: None mentioned.
- Capability inventory: Shell command execution via Membrane CLI and network operations.
- Sanitization: Not explicitly implemented in the instructions.
Audit Metadata