embrace

SUSPICIOUS. The skill's purpose generally matches its capabilities, and the CLI install path is a legitimate npm-distributed developer tool. The main concern is data-flow integrity: Embrace access and authentication are routed through Membrane as an intermediary proxy rather than directly to official Embrace APIs, which broadens trust and exposure. This is not fundamentally malicious, but the third-party gateway design and unpinned `npx @latest` usage make it medium risk rather than benign.