helpwise

SUSPICIOUS. The skill is coherent with its stated Helpwise integration purpose and uses an official npm-distributed Membrane CLI, so it does not look malicious. However, all Helpwise authentication and API traffic are funneled through Membrane as an intermediary, and the skill enables impactful customer-support actions plus mutable latest-version CLI execution. That makes it medium risk even though the capability set is purpose-aligned.