finch

This skill is mostly coherent as a Membrane-based Finch integration, but it is not a direct Finch integration: authentication, connections, action discovery, and execution are routed through Membrane. That third-party mediation and the unpinned `@latest` CLI usage make it higher-risk than a simple first-party API skill, though there is no strong evidence of malware or overt credential theft.