modulr

SUSPICIOUS: The skill is broadly coherent for a Modulr integration, but it requires trusting Membrane as an intermediary for authentication, credentials, and API actions rather than using Modulr directly. This is not confirmed malicious, and the npm install path is legitimate, but the third-party credential/data routing and mutable CLI install create meaningful security risk.