rock-rms

SUSPICIOUS. The skill's purpose and capabilities mostly align, and the CLI comes from an official registry rather than an unverifiable binary. The main concern is data-flow integrity: Rock RMS access and credentials are mediated by Membrane's third-party service, plus the skill supports broad high-impact record operations and unpinned CLI installs. This looks like a legitimate integration with medium risk, not confirmed malware.