dashlane

SUSPICIOUS: The skill is internally coherent as a Membrane-based Dashlane integration, and the CLI install path appears legitimate via npm. However, all Dashlane authentication and data access are routed through Membrane instead of official Dashlane interfaces, creating a third-party credential/data intermediary and moderate trust expansion; combined with an unpinned global CLI install, this makes the skill medium risk rather than benign.