jotform

SUSPICIOUS: the skill's purpose and official installer are coherent, and there is no clear malware behavior. However, it routes Jotform authentication and data through Membrane as a third-party intermediary instead of direct Jotform APIs, uses an unpinned CLI install, and allows dynamic remote action creation with potentially destructive operations.