plain

SUSPICIOUS: the install path is relatively legitimate and vendor-consistent, but the skill has a notable purpose/capability mismatch and routes all authenticated Plain access through Membrane as an intermediary. This looks more like a managed integration wrapper than direct Plain usage; risk is moderate due to third-party credential/data handling and inconsistent product description, not confirmed malware.