chargeover

SUSPICIOUS: the skill is broadly coherent as a ChargeOver integration, and the install path uses an official npm package rather than a raw downloader. The main risk is architectural: all authentication and API traffic are funneled through Membrane as a third-party intermediary, and the skill enables consequential billing actions including payments and cancellations. This is not confirmed malware, but it carries medium security risk due to credential/data forwarding and high-impact actions.