omnisend

The skill is broadly aligned with its stated Omnisend-integration purpose and uses an official-looking npm-distributed CLI, so it is not clearly malicious. The main risk is architectural: authentication and API traffic are mediated by Membrane rather than going directly to Omnisend, creating third-party trust and data-flow exposure, plus some supply-chain risk from installing an unpinned `@latest` CLI. Overall this is better classified as suspicious/medium-risk rather than benign or malware.