badger-maps

SUSPICIOUS: The skill’s stated purpose is plausible, and the CLI comes from a normal registry source, but the actual trust model is expanded: authentication, credential refresh, and app data access are funneled through Membrane rather than direct Badger Maps APIs. That intermediary architecture is a material data-flow and credential-forwarding risk for a single-service integration, though there is not enough evidence to call it malicious.