bridge

SUSPICIOUS. The core workflow is coherent for a Membrane-hosted integration skill, and the CLI distribution path is official-registry and vendor-consistent, not a clear malware signal. However, the skill routes authentication and all Bridge interactions through Membrane rather than direct official Bridge endpoints, and the documentation contains a notable product/docs mismatch. This looks more like a legitimate but high-trust intermediary integration than overtly malicious content.