aws-s3

SUSPICIOUS: The skill’s capabilities broadly match its stated S3 purpose, and the CLI comes from an official npm package tied to the same vendor. However, all AWS access is mediated through Membrane rather than direct AWS APIs, requiring users to trust a third-party service with authentication and data-plane operations; combined with mutable `@latest` installs, this creates moderate security risk even without clear malicious behavior.