agiloft

SUSPICIOUS: the skill’s core capability matches Agiloft access, and the CLI source appears legitimate, but the actual data flow is through Membrane as a third-party intermediary for authentication, credential refresh, action execution, and proxy requests. That makes the trust boundary materially broader than the stated Agiloft-only purpose and creates medium-high security risk despite no clear evidence of malware.