amilia

SUSPICIOUS: The skill’s capabilities broadly match its stated Amilia integration purpose, and the CLI comes from an official npm package tied to Membrane. However, all authentication and data access are routed through Membrane rather than directly to Amilia, creating a disclosed but material intermediary trust and credential-forwarding risk; combined with an unpinned global CLI install, this makes the skill medium risk rather than benign.