customerio

SUSPICIOUS: The skill's basic purpose is coherent, and its CLI install path is relatively trustworthy, but the core integration is mediated by Membrane rather than talking directly to Customer.io. That third-party proxy/auth model is a significant data-flow and trust-boundary expansion for a Customer.io skill, raising medium-high security risk without clear evidence of outright malware.