maintainx

SUSPICIOUS: The skill's capabilities mostly match its MaintainX integration purpose, and the install path uses an official npm package rather than an unverifiable binary. However, all authentication and API traffic are funneled through Membrane as a third-party intermediary instead of direct MaintainX APIs, which raises medium data-flow and trust concerns despite being openly disclosed.