filestack

SUSPICIOUS. The skill is internally coherent for a Membrane-published Filestack integration, and its CLI install path is from an official npm package rather than an unverifiable binary. However, all Filestack access and credential handling are routed through Membrane as a third-party intermediary instead of directly to official Filestack APIs, which creates a meaningful data-flow and trust expansion. This is not strong evidence of malware, but it is a medium security risk due to proxying and concentrated third-party credential mediation.