vanta

SUSPICIOUS. The skill is mostly coherent with its stated purpose and uses an official npm-distributed Membrane CLI, so it does not look overtly malicious. However, it routes Vanta authentication and API traffic through Membrane instead of direct official Vanta endpoints, creating a meaningful third-party credential/data trust dependency that users should evaluate carefully.