pretix

SUSPICIOUS. The skill is not overt malware and uses an official npm-distributed CLI from the same vendor, but its actual footprint is a Membrane integration more than a direct Pretix integration. The main concern is data-flow integrity: Pretix authentication and data are mediated by Membrane, a third-party service, which is broader and less transparent than calling Pretix's official API directly.