comodo

SUSPICIOUS: The skill’s high-level purpose is coherent, and the install path uses npm rather than an obviously malicious download chain. However, it is not a direct Comodo integration: authentication, credential storage, and data access are routed through Membrane as a third-party intermediary, and the CLI is run from unpinned `@latest` versions. That makes the skill proportionate but higher-trust than its description suggests.