blazemeter

SUSPICIOUS: the skill’s basic function matches its description, and the CLI comes from an official npm package, so this is not confirmed malware. However, the integration is built around a third-party intermediary (Membrane) that receives authentication, stores/refreshes connections, and brokers all BlazeMeter actions instead of using official BlazeMeter APIs directly; that makes the data flow and trust model broader than the stated single-service purpose.