perspectium

SUSPICIOUS. The skill’s capabilities mostly match its Perspectium integration purpose, and the CLI comes from an official npm package tied to the same vendor ecosystem. The main concern is data-flow integrity: authentication, credential management, and API traffic are routed through Membrane as an intermediary rather than directly to Perspectium, which expands the trust boundary for enterprise data and access tokens. This is not confirmed malware, but it is a medium-risk integration pattern with notable credential-forwarding and proxying concerns.