nyckel

SUSPICIOUS. The skill's overall purpose is coherent, and the CLI source appears legitimate and same-vendor, so this is not confirmed malware. However, the trust boundary is broader than a normal direct Nyckel integration: it requires a separate Membrane account, routes Nyckel authentication and API traffic through Membrane, and uses mutable CLI versions. That makes the skill medium risk and mildly suspicious from a data-flow and credential-forwarding perspective, even though the behavior is disclosed.