waydev
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI tool to execute actions and manage connections with the Waydev platform. - [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the npm registry, which is the official tool maintained by the skill's author (Membrane). - [PROMPT_INJECTION]: The skill interacts with external data from Waydev, creating a surface for indirect prompt injection. 1. Ingestion points: Waydev API data including commit messages, pull request descriptions, and review comments. 2. Boundary markers: No explicit markers or instructions are defined to separate external data from agent instructions. 3. Capability inventory: The skill can execute commands and perform network requests through the
membraneCLI. 4. Sanitization: No explicit sanitization or validation logic for the ingested data is documented in the skill instructions.
Audit Metadata