flourish

SUSPICIOUS: the skill's stated purpose matches its capabilities, and the CLI comes from an official registry tied to the publisher, so this is not outright malicious. However, it materially expands trust by routing Flourish access and authentication through Membrane, uses unpinned external CLI execution, and encourages a proxy model rather than direct official API calls; that makes the skill medium risk despite being broadly coherent.