stability-ai

SUSPICIOUS: The skill is mostly coherent as a Stability AI integration, and its CLI comes from an official npm package, so it is not overtly malicious. However, all authentication and API traffic are funneled through Membrane as an intermediary rather than going directly to Stability AI, creating moderate credential/data-flow risk and making the footprint broader than a direct vendor integration.