tribe-payments

SUSPICIOUS. The skill is not overtly malicious and uses an official npm package from the same vendor, but its real footprint is a Membrane integration layer rather than a direct Tribe Payments integration. The main concern is third-party mediation of authentication and payment-related data, plus an unusually broad claimed object scope that exceeds a narrowly scoped Tribe Payments skill.