rillet

SUSPICIOUS: The skill is not overtly malicious and uses an official npm-hosted CLI from the same vendor ecosystem, but it is internally inconsistent and routes Rillet access through Membrane rather than direct official Rillet endpoints. The biggest issues are purpose/action mismatch and intermediary data flow, not confirmed malware.