onetrust

SUSPICIOUS: the skill’s stated OneTrust purpose mostly matches its actions, and the CLI install path appears vendor-documented and npm-hosted, but the core data flow is through Membrane as an intermediary rather than directly to OneTrust. That creates medium risk around third-party credential/data mediation and mutable CLI installation, without clear evidence of malware.