proxy-spider

SUSPICIOUS: the skill's basic purpose is coherent, and the CLI appears to be an official Membrane tool from npm, but the integration is not a direct Proxy Spider client. It forwards authentication and all operational traffic through Membrane, a third-party intermediary, and uses unpinned `latest` CLI execution. This is not confirmed malware, but the data-flow indirection and external CLI trust model create meaningful medium risk.