helpninja

SUSPICIOUS. The skill is largely coherent for a Membrane-based HelpNinja integration, and the CLI comes from an official npm package rather than a raw downloader. The main concern is data-flow integrity: instead of talking directly to HelpNinja's official API, all requests and delegated auth pass through Membrane's proxy, which expands trust and exposes HelpNinja data to a third-party intermediary. Overall this looks more like a legitimate integration wrapper than malware, but it carries moderate supply-chain and proxy-trust risk.