sheetsu

SUSPICIOUS: the skill is internally coherent and uses official same-org installation paths, so it does not look malicious. However, its actual data flow is a third-party mediated integration through Membrane rather than direct Sheetsu API usage, which introduces medium trust and data-routing risk beyond the stated app integration.