basecamp

SUSPICIOUS. The skill's Basecamp management purpose matches its capabilities, and the CLI install path is from a legitimate registry, so this is not outright malicious. However, the integration is materially mediated by Membrane rather than Basecamp's first-party path: authentication, credential refresh, and Basecamp data/actions flow through a third-party service and account, which raises trust and data-flow concerns. Combined with an unpinned global CLI install and dynamic action creation, the skill presents medium risk despite coherent stated purpose.