livesession

SUSPICIOUS: The skill’s capabilities generally match its stated purpose, and the install path appears to be the official Membrane CLI from npm. However, all LiveSession access and authentication are mediated through Membrane, so user data and credentials are entrusted to a third-party integration platform rather than going directly to LiveSession. This is disclosed and not overtly malicious, but the extra trust boundary and mutable `@latest` installs make it medium risk rather than benign.