rafay-systems

SUSPICIOUS. The skill is broadly coherent with its stated purpose, and the CLI comes from the official npm registry rather than a raw binary. However, it introduces an intermediary trust boundary: Rafay authentication and API traffic are routed through Membrane-managed connections instead of directly to Rafay, and the globally installed CLI is unpinned (`@latest`). This is not clearly malicious, but the third-party credential/data handling and proxy design raise medium security risk.