gist

SUSPICIOUS: the install path is relatively trustworthy, but the skill is internally inconsistent about what 'Gist' means and routes authenticated operations through Membrane as an intermediary. The main concern is purpose/data-flow mismatch: GitHub Gist docs and naming are mixed with Gist CRM actions on `getgist.com`, making the true target unclear and requiring extra trust in Membrane's proxy/auth handling.