clientary

SUSPICIOUS: The skill's capabilities broadly match its stated Clientary integration purpose, and the CLI install path is from the official npm registry rather than an ad-hoc binary. The main concern is architectural: it routes authentication and data operations through Membrane as an intermediary, so credentials and Clientary data are entrusted to third-party infrastructure; combined with an unpinned global CLI install, this makes the skill medium risk but not malicious.