duo-security

SUSPICIOUS: The skill's purpose and capabilities are mostly coherent, and the CLI comes from an official npm package documented by Membrane. The main concern is data-flow integrity: Duo access is routed through Membrane, which becomes a credential and data intermediary instead of calling Duo directly. That makes this a medium-risk third-party mediation pattern rather than confirmed malware.