bright-security

SUSPICIOUS: the skill is coherent in purpose and uses an official npm-distributed Membrane CLI, but it introduces a third-party mediation layer for Bright authentication and API traffic. The main risk is data-flow and credential delegation through Membrane, plus unpinned CLI execution and security-tooling capability; this is not confirmed malware.