kommo

SUSPICIOUS: the skill is broadly coherent with its stated Kommo integration purpose and uses an official-looking vendor CLI from npm, so it is not overtly malicious. However, it routes authentication and API traffic through Membrane rather than directly to Kommo, and uses floating CLI versions, creating medium trust and data-flow risk that exceeds a simple direct API integration.