faktoora

SUSPICIOUS: The skill is purpose-aligned and uses an official npm-distributed Membrane CLI, so it does not look outright malicious. However, it routes Faktoora authentication and API traffic through Membrane as a third-party intermediary, uses an unpinned global CLI install, and enables real external mutations in an accounting system; this makes it higher-risk than a direct API guide but still broadly coherent with its stated purpose.