gladly

SUSPICIOUS. The skill's purpose is coherent, and the CLI comes from an official registry with matching branding, so this is not confirmed malware. However, the core integration routes Gladly authentication and API access through Membrane as a third-party intermediary instead of directly to Gladly, and it relies on mutable `@latest` CLI execution. That makes the data flow and trust model higher risk than a direct Gladly integration.