carto

SUSPICIOUS: the skill's broad Carto-management purpose mostly matches its capabilities, and installation comes from the official npm registry rather than an unknown binary. However, all Carto interaction is funneled through Membrane as an intermediary service, expanding data exposure and trust beyond Carto itself, and the install/run path uses unpinned `@latest` CLI execution.