cflow

SUSPICIOUS: the skill is mostly aligned with its stated Cflow-integration purpose and uses an official npm-distributed CLI, but it routes authentication and workflow data through Membrane as an intermediary rather than directly to Cflow. That third-party credential/data handling is proportionate to the product design yet increases trust and security exposure, so this is not malicious but carries medium risk.