worksnaps

SUSPICIOUS: The skill's purpose matches its capabilities, and the CLI source appears to be the publisher's official npm package, so this is not malware-like. However, all Worksnaps access and credential handling are routed through Membrane as a third-party intermediary, and the skill exposes a broad proxy mechanism plus an unpinned CLI install, making it medium-risk rather than benign.