wuf
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill directs the user to install the
@membranehq/clipackage from the NPM registry, which is a legitimate download of the vendor's own tool from a well-known service. - [COMMAND_EXECUTION]: The skill utilizes the
membranecommand-line interface to manage authentication, discover API actions, and execute requests against the Wuf platform. These commands are necessary for the skill's primary functionality and use the vendor's official toolset. - [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it processes data retrieved from external Wuf API endpoints.
- Ingestion points: External data enters the agent's context through
membrane action runandmembrane requestcommands as described inSKILL.md. - Boundary markers: The skill does not specify the use of delimiters or 'ignore' instructions when handling API responses from Wuf.
- Capability inventory: The agent has the capability to perform network requests and execute actions via the
membraneCLI tool. - Sanitization: There is no documentation of sanitization or validation of the data received from the external API before processing.
Audit Metadata