flowiseai

SUSPICIOUS. The skill is mostly coherent with its stated purpose and uses a legitimate npm-distributed CLI, but it routes authentication and API traffic through Membrane as an intermediary rather than directly to FlowiseAI. That third-party credential/data brokerage is disclosed and product-consistent, so this is not confirmed malware, but it creates medium security risk and trust expansion beyond a simple direct API integration.