forcemanager

SUSPICIOUS: The skill’s stated purpose and capabilities are mostly aligned, and the npm-based CLI install is plausible. The main concern is data-flow integrity: ForceManager access and auth are routed through Membrane’s proxy/service instead of directly to ForceManager, creating a third-party credential and traffic mediation layer. This is not clearly malicious, but it adds medium trust and privacy risk beyond a direct API integration.