forms-on-fire

SUSPICIOUS: The skill’s capabilities mostly match its stated purpose, and the CLI install source is reasonably verifiable via npm and same-org docs. The main concern is architectural: Forms On Fire authentication and API traffic are mediated through Membrane, a third-party proxy/CLI, including generic request forwarding and write operations. This is coherent for an integration skill but increases trust and data-flow risk beyond a direct official API integration.