panzura

SUSPICIOUS. The skill is purpose-aligned and uses an official npm-distributed CLI from the same publisher, so it does not look overtly malicious. However, it introduces a third-party control plane (Membrane) between the agent and Panzura, forwards authentication and data through that intermediary, uses unpinned CLI execution, and enables broad remote actions and workflow automation beyond simple read-only access.