data247

SUSPICIOUS. The skill is mostly coherent and uses an official same-org CLI from npm, so it is not overtly malicious. However, it routes Data247 access and authentication through Membrane as an intermediary, uses an unpinned global CLI install, and allows dynamic hosted action creation, which raises medium trust and data-flow concerns beyond a direct API integration.