foundriesio

SUSPICIOUS. The skill is coherent as a Membrane-based Foundries.io integration and uses an official npm-distributed CLI, so it is not outright malicious. However, it routes authentication and API traffic through Membrane rather than directly to Foundries.io, creating meaningful third-party credential and data-flow risk that users may not expect from a service-specific skill.