statuspal

SUSPICIOUS: the skill is internally coherent for a Membrane-published integration, and the CLI install path appears legitimate, but the core design routes Statuspal authentication and API traffic through Membrane rather than the official API directly. That intermediary data flow is broader than a direct Statuspal skill and creates moderate trust and credential-forwarding risk.