cyfe

SUSPICIOUS. The skill's core purpose matches its capabilities, and the CLI comes from an official npm package, so this is not outright malicious. However, all Cyfe authentication and API traffic are routed through Membrane instead of directly to Cyfe, creating a third-party credential/data mediation layer that is broader than a direct integration and raises medium security concern.