tomba

SUSPICIOUS: the skill is coherent with its stated Membrane-based purpose, and the CLI install path is from the official npm registry, but it routes Tomba authentication and data access through Membrane rather than direct Tomba APIs. That third-party credential/data mediation and unpinned `@latest` execution make it medium risk, though not malicious on the evidence provided.