bunnycdn

SUSPICIOUS: The skill's capabilities largely match its BunnyCDN-management purpose and the CLI install source appears official, so this is not overtly malicious. The main concern is data-flow integrity and trust expansion: BunnyCDN authentication and operations are routed through Membrane's hosted connection/action layer instead of directly to Bunny, plus the skill enables impactful administrative actions. Overall this is a coherent but medium-risk third-party integration skill, not confirmed malware.