testmonitor
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the npm registry, which is the official tool for the service. - [COMMAND_EXECUTION]: The skill uses the
membraneCLI tool to perform operations such as searching for connectors, managing connections, and executing API actions on TestMonitor. - [PROMPT_INJECTION]: The skill processes external data from TestMonitor (requirements, test cases, results), creating a surface for potential indirect prompt injection.
- Ingestion points: Output from
membrane action runandmembrane request(SKILL.md). - Boundary markers: No specific delimiters or warnings to ignore embedded instructions are provided.
- Capability inventory: The skill can execute API actions and proxy HTTP requests via the
membraneCLI (SKILL.md). - Sanitization: No explicit sanitization or filtering of API responses is defined in the skill logic.
Audit Metadata