celoxis

SUSPICIOUS: The skill is broadly aligned with its stated Celoxis integration purpose and uses a standard npm-installed CLI from the same vendor ecosystem, so it does not look malicious. The main concern is data-flow integrity: all Celoxis access and auth are mediated by Membrane, including a generic proxy request feature, which expands trust to a third-party service and enables broad remote actions. Risk is medium rather than high because the install path is verifiable, there is no secret-file harvesting, and the credential handling is consistent with the product's documented design.