crowddev

SUSPICIOUS: the capability generally matches the stated Crowd.dev purpose, and the CLI install source looks legitimate, but the skill's real footprint is broader than a direct Crowd.dev integration because all auth and API traffic are mediated by Membrane. The main concern is third-party proxying of service data and delegated credential handling, not confirmed malware.