harness

SUSPICIOUS: the skill’s purpose matches Harness integration, and the CLI install path is reasonably legitimate, but the actual data flow is through Membrane as a third-party gateway rather than directly to Harness. That intermediary auth/proxy design is broader and riskier than a direct official API integration, so this is not malware but has meaningful medium security risk.