eyepopai

SUSPICIOUS: The skill's core behavior is mostly coherent for an EyePop integration, and the CLI comes from an official registry. The main concern is that all authenticated EyePop access is funneled through Membrane's third-party proxy/action layer rather than direct EyePop APIs, combined with mutable CLI execution (`@latest`) and possible local credential storage. This is not confirmed malware, but the data-flow and trust model are broader than the skill description implies.