helium

SUSPICIOUS: the skill's purpose and capabilities are mostly aligned, and the CLI install source appears official. The main risk is that all Helium access and auth are mediated by Membrane, expanding trust and data flow to a third party, plus the skill enables live destructive actions and uses an unpinned CLI version.