enfuce

SUSPICIOUS: The skill is broadly coherent for an Enfuce integration, and the CLI install path appears legitimate via the official npm package. The main concern is architectural: it routes Enfuce authentication and data through Membrane as an intermediary for a sensitive financial platform, with mutable CLI installs and action-generation capabilities increasing security exposure. This is not confirmed malware, but it is higher-risk than a direct first-party Enfuce client.