wufoo
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the
@membranehq/clipackage from the NPM registry. This is a vendor-owned tool required for the skill's operation. - [COMMAND_EXECUTION]: The instructions involve executing
membraneCLI commands to manage Wufoo data. These operations are restricted to the functionality provided by the Membrane platform. - [CREDENTIALS_SAFE]: The skill utilizes a secure
membrane loginflow that handles authentication via a browser, ensuring that no sensitive API keys or tokens are stored or handled directly within the skill's logic. - [PROMPT_INJECTION]: The skill interacts with external data provided by Wufoo (such as form entries and reports).
- Ingestion points: Data retrieved via
membrane action runandmembrane requestcommands in SKILL.md. - Boundary markers: Not explicitly defined in the skill instructions.
- Capability inventory: The skill can execute various Wufoo API actions and proxy requests using the
membraneCLI. - Sanitization: No specific sanitization or validation of the retrieved Wufoo data is described in the manual instructions.
Audit Metadata