findity

SUSPICIOUS: the skill is coherent as a Membrane-powered Findity connector, but its actual data path routes Findity authentication and API traffic through Membrane rather than directly to official Findity endpoints. The npm-installed CLI appears legitimate, so this is not confirmed malware, but the third-party proxying and credential handling create a medium-high security risk for a skill presented as a service integration.