blackthorn

SUSPICIOUS. The skill's capabilities broadly match its stated Blackthorn integration purpose, and the install path is same-vendor via npm, not a covert downloader. The main concern is data-flow integrity: Blackthorn access and credentials are routed through Membrane's managed proxy/service rather than directly to Blackthorn, expanding trust to a third party; combined with mutable `npx @latest`, this makes the skill medium risk rather than benign.