builderio

SUSPICIOUS: The skill is coherent with Membrane’s stated product model and uses an official npm-distributed CLI, so it is not overt malware. However, its actual footprint routes Builder.io authentication and API traffic through Membrane as a third-party intermediary, which is a meaningful trust and data-flow expansion beyond a direct Builder integration.