autobound

SUSPICIOUS: The skill's purpose and capabilities mostly align, and the CLI comes from an official npm package rather than an opaque binary. However, all Autobound access is mediated through Membrane, the skill installs and relies on a third-party CLI with an unpinned global install, and authenticated business data/actions flow through that intermediary platform rather than directly to Autobound. This is not confirmed malware, but it carries medium risk due to intermediary credential/data handling and remote action execution.