ibanity

SUSPICIOUS: the skill is coherent with its stated purpose and uses an official-looking Membrane CLI from npm, so it does not look malicious. However, it inserts Membrane as a third-party intermediary for authentication and banking data access instead of talking directly to Ibanity, which raises medium data-flow and credential-forwarding risk for a finance-related integration.