zencom

SUSPICIOUS: the skill is broadly aligned with its stated purpose and uses an official npm-distributed CLI, so it does not look overtly malicious. However, it routes authentication and ZEN.COM operations through Membrane as an intermediary, uses floating installs, and enables an agent to perform potentially sensitive financial-platform actions via a third-party CLI/service. That makes it coherent but medium risk rather than benign.