truelayer
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends installing the @membranehq/cli tool from the official npm registry.
- [COMMAND_EXECUTION]: Uses the membrane CLI to manage authentication, discover actions, and execute requests against the TrueLayer API.
- [PROMPT_INJECTION]: The skill ingests data from external TrueLayer API endpoints which could contain untrusted input. -- Ingestion points: Data returned from TrueLayer actions or proxy requests. -- Boundary markers: None specified in the documentation. -- Capability inventory: Shell command execution via the membrane CLI. -- Sanitization: Not explicitly mentioned in the skill instructions.
Audit Metadata