courier

SUSPICIOUS: The skill is broadly consistent with its stated Courier-integration purpose and uses an official-looking npm CLI plus documented Membrane auth flows, so it is not fundamentally incompatible or clearly malicious. However, all Courier access and credential handling are routed through Membrane as a third-party intermediary rather than directly to Courier, and the docs include unpinned CLI execution (`@latest`), making the trust footprint broader than a direct SaaS integration.