azure-api-management

SUSPICIOUS. The skill is internally coherent for a Membrane-based Azure API Management integration and uses an official npm package, so it is not overtly malicious. However, it routes authentication and API interaction through Membrane rather than directly to Microsoft, requires trust in a third-party managed platform, and uses a mutable `@latest` global CLI install, creating moderate security risk.