tiledesk
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends the installation of the
@membranehq/cliNode.js package. This is a vendor-owned resource used for managing integrations and authentication. - [COMMAND_EXECUTION]: The instructions utilize the
membraneCLI tool to manage connections, search for actions, and execute API requests. These operations are restricted to the context of the user's Membrane account and the Tiledesk integration. - [DATA_EXFILTRATION]: While the skill can send data to Tiledesk via the
membrane requestproxy command, this is the primary intended function of the skill and uses the vendor's managed authentication system to ensure secure transmission. - [PROMPT_INJECTION]: As an integration that processes external data from Tiledesk (such as chat messages or knowledge base content), there is an inherent surface for indirect prompt injection. However, the skill does not contain any instructions that increase this risk beyond standard integration behavior.
Audit Metadata