clari

SUSPICIOUS: the skill’s purpose and commands are internally consistent, and the install source appears legitimate, but all Clari auth and API traffic is routed through Membrane rather than directly to Clari. This third-party intermediary model is proportionate to the product but introduces medium security risk from credential/data handling and unpinned CLI installation.