cursor

SUSPICIOUS: the skill’s core function is coherent, and the CLI install source is legitimate, but the actual data path is not direct Cursor integration. It requires routing authentication and application data through Membrane, a third-party intermediary that can discover, generate, and execute actions on the user’s behalf. That is broader and riskier than a simple Cursor skill, so this is not malicious on its face but carries medium security risk due to credential/data mediation and dynamic action creation.