geoapify

The skill appears legitimate but is not a direct Geoapify integration: it installs the Membrane CLI from npm and routes authentication, connections, and action execution through Membrane infrastructure. This is internally coherent enough to avoid a malicious classification, but the third-party mediation, server-side credential handling, and unpinned global CLI install make it moderately risky and somewhat broader than a simple Geoapify skill.