shipstation

SUSPICIOUS. The skill’s capabilities fit its ShipStation-management purpose and the CLI install path is a normal npm-based distribution, so this is not strongly indicative of malware. However, all ShipStation access and credential handling are mediated by Membrane rather than official ShipStation APIs, expanding the trust boundary to a third-party service and enabling significant account actions; that makes the skill moderately risky even though it is internally coherent.