webflow-automation

The skill is purpose-aligned and does not use suspicious installers, but it routes Webflow authentication and operations through a third-party MCP provider rather than direct Webflow endpoints. That intermediary data flow and the presence of publish/delete actions make it medium-risk and best classified as suspicious rather than malicious.