sailthru

SUSPICIOUS: the skill's general purpose is coherent, and the CLI install path is an official npm package, but the core integration routes authentication, credentials, and Sailthru data through Membrane rather than Sailthru's official API. That third-party intermediary model, combined with mutable `@latest` execution and remote action generation, creates medium-high security risk without enough evidence of outright malware.