applitools

This SKILL.md is documentation for an Applitools integration that delegates authentication and API calls to the Membrane CLI/service. It contains no hidden code, obfuscated payloads, or direct instructions to download-and-execute untrusted scripts. The primary supply-chain/security considerations are: (1) installing the Membrane CLI via npm (a normal but non-trivial supply-chain action), and (2) the design choice to route API requests and credentials through Membrane's backend (a centralization of trust and a potential privacy/credential-concentration risk). There is no evidence of credential harvesting, remote code execution commands like pipe-to-shell, or attempts to read local secret files. Overall the content is coherent with its stated purpose and does not appear malicious, but it carries moderate supply-chain and third-party-centralization risk that administrators should evaluate before installing and using the Membrane CLI.