getblock

SUSPICIOUS: The skill is internally coherent as a Membrane-based GetBlock integration, and its install path is from an official registry rather than a shady payload source. The main concern is data-flow integrity: instead of direct GetBlock API use, credentials and requests are routed through Membrane’s CLI/backend proxy, giving a third party access to authenticated traffic. This is not confirmed malware, but the intermediary design and unpinned CLI install make it medium risk.