classlink

SUSPICIOUS. The skill's purpose and capabilities are mostly coherent for a ClassLink integration, and the CLI install path appears to be official vendor tooling from npm. However, all authentication and API traffic are funneled through Membrane as a third-party intermediary instead of going directly to ClassLink, which creates a notable data-flow and trust expansion risk. This looks more like a managed integration gateway than direct ClassLink access; that is not inherently malicious, but it should be treated as medium risk due to proxy-based access and reliance on external platform-controlled credentials.