nordic-api-gateway

SUSPICIOUS: the skill is internally coherent as a Membrane-based Nordic API Gateway integration, and its install path is official npm rather than an unverified binary. The main concern is data-flow integrity and trust expansion: financial API access and auth are mediated through Membrane instead of going directly to the service, and the CLI is installed/executed at mutable `@latest` versions. No clear malware or covert exfiltration is shown, but the intermediary credential/data path and potential payment actions make this higher than low risk.