upserve
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: Recommends the installation of the
@membranehq/clipackage from the official npm registry to facilitate platform interactions. - [COMMAND_EXECUTION]: Utilizes the
membraneCLI tool for logging in, managing connections, and executing actions against the Upserve API. - [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it ingests and processes untrusted data from an external API. Ingestion points: Data enters the agent's context through CLI outputs from commands like
membrane action listandmembrane request. Boundary markers: The instructions do not include specific delimiters or warnings to ignore instructions embedded within the retrieved API data. Capability inventory: The skill permits the agent to run arbitrary actions and send raw HTTP requests via themembranetool. Sanitization: There are no explicit instructions for validating or sanitizing the data retrieved from the Upserve API before it is used to influence further agent actions.
Audit Metadata