logstash

SUSPICIOUS: the skill is mostly coherent for a Membrane-hosted Logstash integration, and the install source is official npm rather than an unknown binary. The main risk is data-flow integrity: Logstash access and authentication are mediated through Membrane, not direct Elastic endpoints, plus unpinned `npx @latest` execution adds supply-chain risk.