cloudflare

SUSPICIOUS. The skill’s capabilities broadly match its stated Cloudflare-management purpose, and the CLI install path appears to be the publisher’s official npm package. The main concern is architectural: Cloudflare credentials and API traffic are routed through Membrane, a third-party intermediary, and the skill enables impactful administrative actions. This is not clearly malicious, but it carries medium risk due to delegated credential handling, proxying, and real-world account changes.