demio

SUSPICIOUS. The skill's purpose and capabilities are mostly aligned, and the CLI install path is consistent with the publisher. The main concern is data-flow integrity: Demio operations and credential handling are mediated through Membrane rather than going directly to Demio, which introduces a third-party trust boundary and credential-forwarding risk. This is not clearly malicious, but it is more sensitive than a direct official API integration.