videoask

SUSPICIOUS: The skill's purpose and capabilities are mostly coherent, and the CLI install path appears official via npm, so this is not overt malware. However, all authentication and VideoAsk operations are routed through Membrane as an intermediary rather than directly to VideoAsk, creating medium trust and data-flow risk for a service-specific integration.