ibm-api-connect

SUSPICIOUS. The skill's capabilities generally fit its IBM API Connect purpose, and the CLI comes from an official npm package rather than an unverifiable binary. However, all authentication and API operations are routed through Membrane as an intermediary, which is a meaningful trust and data-flow expansion beyond a direct IBM integration, and the install is unpinned. This is not confirmed malware, but it is a moderate-risk brokered integration that warrants caution.