chef

SUSPICIOUS. The skill's capabilities mostly align with its stated Chef integration purpose, and the CLI install path appears to be an official npm-distributed tool from the same vendor. The main concern is data-flow integrity: Chef access is mediated through Membrane's connection and proxy layer rather than directly to official Chef APIs, so infrastructure data and auth context pass through a third party. This is not confirmed malware, but it introduces meaningful trust and confidentiality risk beyond a direct Chef integration.