veriphone

SUSPICIOUS. The skill’s basic function fits phone-number verification, and the CLI install source appears legitimate, but the core integration is not direct Veriphone access: authentication, credentials, and data are routed through Membrane as an intermediary. That third-party credential and data brokering is broader than the stated purpose and creates medium-high security risk, though there is no clear evidence of confirmed malware.