cusdis

SUSPICIOUS: the skill is coherent with its stated purpose as a Membrane-based Cusdis integration, and the CLI source is official npm rather than an opaque binary. However, it requires a Membrane account, routes Cusdis access and auth through a third-party intermediary, uses mutable latest installs, and allows remote action creation/execution, making it medium risk despite no clear signs of malware.