wbiztool
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@membranehq/clipackage from the NPM registry. This is a legitimate vendor resource used for authentication and API interaction as part of the skill's primary purpose. - [COMMAND_EXECUTION]: The skill uses shell commands to interact with the Membrane CLI (
membrane login,membrane connect,membrane action run). These commands are standard for the tool's operation and do not involve unauthorized privilege escalation or persistence mechanisms. - [DATA_EXFILTRATION]: Network operations are performed through the
membraneCLI to interact with the Wbiztool API. The skill uses a proxy mechanism that manages credentials server-side, preventing the exposure of API keys or sensitive tokens in the local environment. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it interpolates user intent into command arguments (e.g.,
--intent=QUERY). However, this is a standard risk for integration skills and is mitigated by the structured nature of the CLI tool. No boundary markers or sanitization are explicitly defined in the provided text.
Audit Metadata