foxy

SUSPICIOUS: the skill is broadly coherent as a Membrane-based Foxy connector, and the CLI install source is same-vendor and from npm, not a raw payload. However, all Foxy authentication and data access are routed through Membrane rather than Foxy's official API, the skill encourages this intermediary path as the default, it can perform consequential account/subscription actions, and the documentation is internally inconsistent about what Foxy objects it manages. This is not confirmed malware, but it carries medium risk from third-party credential/data routing and scope ambiguity.