bannerbear

SUSPICIOUS: The skill's stated purpose is coherent, and the installer comes from a normal npm source, so this is not confirmed malware. However, the integration is materially mediated by Membrane rather than Bannerbear's official direct API, meaning auth and action data flow through a third-party service, and the CLI install is mutable via `@latest`.