cliniko

SUSPICIOUS: the skill’s capabilities fit its purpose, and the CLI comes from an official npm package, so this is not overtly malicious. However, all Cliniko access and credentials are mediated by Membrane rather than direct official Cliniko APIs, which creates a meaningful third-party data-handling risk for sensitive healthcare records; combined with @latest global CLI install and partially unverified command details, this is better classified as suspicious than benign.