databricks

SUSPICIOUS: The skill’s capabilities largely match its Databricks-management purpose and the CLI install source is legitimate, but all API access and authentication are routed through Membrane rather than directly to Databricks. That third-party proxy model is disclosed and plausibly part of the product, yet it expands trust and data exposure beyond what a direct Databricks skill would require, so overall risk is medium rather than benign.