brandfetch

SUSPICIOUS. The skill is mostly coherent as a Membrane-based Brandfetch integration and uses an official npm-published CLI rather than a raw installer, so this is not strong evidence of malware. However, it routes all authentication and API activity through third-party Membrane instead of Brandfetch's official API, and uses mutable `@latest` installs, creating medium security risk and intermediary trust concerns.