dukaan

SUSPICIOUS. The skill is coherent for a Dukaan integration and does not show overt malware patterns, but it routes authentication and data operations through Membrane rather than directly to Dukaan. The npm-installed CLI appears same-org and legitimate, so this is mainly a medium trust and data-flow risk, not confirmed malicious behavior.