cradl-ai

SUSPICIOUS. The skill's overall purpose is coherent, and the CLI install source appears legitimate via npm, but the integration routes Cradl authentication and API traffic through Membrane as a third-party intermediary instead of directly to official Cradl endpoints. That makes the main risk data-flow and credential forwarding through a proxy service, not overt malware or an obviously malicious installer.