canny

SUSPICIOUS: The skill is broadly coherent as a Canny integration, and the CLI comes from an official npm package rather than an unverifiable binary. The main concern is data-flow integrity: Canny access is mediated through Membrane, so credentials, requests, and results pass through a third-party service and proxy layer instead of going directly to Canny. Combined with an unpinned global CLI install and broad proxy capability, this raises medium security risk, but the behavior is disclosed and not fundamentally incompatible with the stated purpose.