connectall

SUSPICIOUS: The skill is mostly coherent with its stated ConnectALL integration purpose, and its install path is a standard npm CLI rather than an obviously malicious payload. However, all authentication and API activity are routed through Membrane as a third-party intermediary instead of direct ConnectALL endpoints, and the skill encourages always using that intermediary. This is a notable trust and data-flow risk, though not strong evidence of malware.