zendesk-guide
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the '@membranehq/cli' package from the NPM registry to interact with the Membrane platform. This is a vendor-owned resource.
- [COMMAND_EXECUTION]: Multiple instructions guide the user to execute 'membrane' CLI commands for logging in, managing connections, and performing API actions on Zendesk Guide.
- [PROMPT_INJECTION]: The skill is vulnerable to indirect prompt injection because it ingests untrusted data from external sources.
- Ingestion points: Zendesk Guide Articles and Comments fetched via the CLI (SKILL.md).
- Boundary markers: Not present.
- Capability inventory: The skill can execute CLI commands and perform network requests via the Membrane proxy (SKILL.md).
- Sanitization: No sanitization of the fetched external data is mentioned or performed before processing.
Audit Metadata