cloudmersive

SUSPICIOUS. The skill’s capabilities mostly fit its stated purpose, and the CLI install path is standard npm-based rather than a suspicious download-exec chain. However, the actual data flow is not a direct Cloudmersive integration: authentication and API traffic are mediated by Membrane, a third-party platform, including proxy requests. That intermediary design is disproportionate to a simple vendor API skill and creates moderate credential and data-flow risk, though not enough evidence of confirmed malicious intent.