isn

SUSPICIOUS: the skill is broadly consistent with its stated purpose as a Membrane-published ISN integration, and the CLI install source is official npm rather than an unverifiable binary. The main risk is architectural: ISN data and authenticated operations are routed through Membrane as a third-party gateway, plus the skill can perform write/delete actions and uses a floating CLI version. This is not confirmed malware, but it carries medium security risk due to mediated data flow and external side effects.