directus

SUSPICIOUS: The skill's stated Directus-management purpose broadly matches its capabilities, and the CLI comes from an official npm package with vendor-documented install steps. The main concern is data-flow integrity and scope expansion: authentication and Directus operations are routed through Membrane as a third-party broker instead of directly to Directus APIs, so the user must trust Membrane with credentials and content operations. This looks coherent but higher-risk than a direct official API integration.