superdocu

SUSPICIOUS: the skill is largely consistent with its stated purpose and uses an official npm-distributed CLI, but it routes Superdocu authentication and API traffic through Membrane rather than directly to Superdocu. That intermediary architecture and mutable CLI install create medium security risk, though there is not enough evidence of malware or overt credential theft.