travis-ci
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the @membranehq/cli package from the npm registry. This is a vendor-owned package from membranedev used to facilitate integration.
- [COMMAND_EXECUTION]: The skill uses the membrane CLI to execute actions such as connecting to Travis CI, listing builds, and running specific tasks.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection by retrieving data from Travis CI that could contain instructions. 1. Ingestion points: build logs and metadata retrieved from Travis CI (SKILL.md). 2. Boundary markers: Not specified in the skill instructions. 3. Capability inventory: triggering builds, creating environment variables, and sending arbitrary API requests (SKILL.md). 4. Sanitization: The skill relies on the Membrane platform for request isolation and authentication management.
Audit Metadata