amlbot

SUSPICIOUS. The skill is mostly coherent with its stated AMLBot integration purpose, and the CLI comes from an official-looking npm package tied to the same product ecosystem. However, all AMLBot access is mediated through Membrane, which stores credentials server-side and acts as a third-party control plane; combined with mutable `@latest` CLI installs and dynamic action creation, this creates medium security risk even without clear evidence of malicious intent.