databricks

SUSPICIOUS. The skill’s capabilities broadly match its Databricks-management purpose, and the CLI install source is official npm rather than a suspicious download. However, all authentication and API activity are funneled through Membrane as an intermediary, expanding trust and data exposure beyond direct Databricks APIs; combined with unpinned CLI installation and the ability to trigger impactful workspace actions, this makes the skill medium-risk rather than benign.