microsoft-teams

SUSPICIOUS: The skill is mostly coherent with its Microsoft Teams integration purpose and uses an official npm-distributed Membrane CLI, so it does not look overtly malicious. The main concern is that all auth and API traffic are funneled through Membrane as a third-party gateway, plus the skill enables outbound communication and mutable `@latest` installation, making the overall risk medium rather than benign.