browserstack

SUSPICIOUS. The skill’s capabilities mostly match its stated BrowserStack-management purpose, and the CLI install path appears same-vendor and reasonably verifiable. The main concern is data-flow integrity: BrowserStack operations and likely credentials are mediated through Membrane rather than sent directly to BrowserStack’s official API, creating a third-party trust and credential-forwarding layer. This is not confirmed malware, but it is a medium-risk integration pattern with meaningful trust and remote-action exposure.