jupiterone

SUSPICIOUS: the skill is internally coherent and not overtly malicious, but it routes JupiterOne authentication and API traffic through Membrane’s third-party platform instead of direct JupiterOne APIs. That intermediary credential/data handling makes this a medium-risk integration despite otherwise legitimate npm-based installation and aligned functionality.