goose

SUSPICIOUS. The install path is relatively normal, but the skill is internally inconsistent about what 'Goose' is and routes authentication and API traffic through Membrane as a third-party intermediary instead of clearly documented official Goose endpoints. That mismatch and proxy-based data flow make the skill higher risk than a normal direct API integration.