jobber

SUSPICIOUS. The skill's capabilities broadly match its Jobber integration purpose, and the CLI install path appears official, so there is no clear malware signal. However, all authentication and API access are mediated through Membrane rather than directly to Jobber, creating meaningful third-party data handling and action-execution risk that is larger than a simple direct API integration.