gender-api

SUSPICIOUS: The skill is broadly coherent and uses an official npm-distributed CLI from the same publisher ecosystem, so it does not show strong signs of malware. However, it routes authentication, requests, and potentially sensitive Gender API data through Membrane rather than directly to the official Gender API endpoints, creating a meaningful intermediary trust and data-flow risk; combined with the unpinned global CLI install, this makes it medium risk rather than benign.