forescout

SUSPICIOUS: The skill’s purpose and capabilities are mostly aligned, and the CLI comes from an official registry tied to the same vendor ecosystem. The main concern is data-flow integrity: Forescout authentication and actions are mediated through Membrane rather than directly through official Forescout APIs, creating third-party credential and data exposure. This is not clearly malicious, but it is a medium-risk brokered integration with unpinned CLI install instructions.