smartrecruiters

SUSPICIOUS. The skill's purpose and capabilities are mostly aligned, and the install path uses the official npm registry, but the core integration routes SmartRecruiters authentication and data access through Membrane rather than directly to SmartRecruiters. That third-party mediation is proportionate to the product's stated model yet creates medium security risk from credential/data concentration and unpinned CLI installation.