documo

SUSPICIOUS. The skill's actions broadly fit a Documo integration, and the CLI comes from an official npm scope, so this is not confirmed malware. However, the skill routes all authentication and Documo operations through Membrane as a third-party intermediary, uses mutable `@latest` installs, and asks the agent to trust an external CLI with ongoing access to user data and workflows rather than using Documo's official direct API path.