terminus-app

SUSPICIOUS: the skill is coherent with Membrane's stated integration model, and the CLI install source appears first-party via npm, so this is not confirmed malware. However, it requires substantial trust in Membrane as an intermediary because authentication, credential storage, and API traffic are routed through Membrane rather than directly to Terminus, and the CLI install is unpinned.