wisetime
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the
membraneCLI to manage connections and execute actions against the WiseTime API. This is the intended functionality of the integration. - [EXTERNAL_DOWNLOADS]: Recommends installing the
@membranehq/clipackage via the npm registry. This package belongs to the skill author's organization and is required for the skill to function. - [PROMPT_INJECTION]: The skill interacts with external data from WiseTime (activities, reports, team data). While this constitutes a surface for indirect prompt injection, the skill promotes the use of structured data through Membrane's action system, which is a recommended mitigation.
Audit Metadata