accountscore

SUSPICIOUS: the skill's stated purpose is AccountScore access, but it actually requires routing authentication and data through Membrane's CLI and backend rather than AccountScore's official API surface. The install source is reasonably legitimate and same-vendor, so this is not confirmed malware, but the third-party mediation, mutable CLI versioning, and expanded data trust boundary make the skill medium risk.