docupilot

SUSPICIOUS: The skill is internally coherent for a Membrane-published integration, and the CLI install path is official npm rather than a rogue binary. However, the actual data flow is through Membrane's intermediary service instead of direct Docupilot APIs, and the skill encourages centralized credential/data handling plus dynamic action generation. This is not confirmed malware, but it carries medium security risk due to third-party credential custody, indirect API routing, and broad post-auth account actions.