lever

SUSPICIOUS: the stated ATS integration purpose fits the capabilities, and the CLI install path appears official, but the skill routes authentication and API traffic through Membrane rather than directly to Lever. That intermediary trust and credential forwarding are proportionately risky even though they are openly documented, so this is better classified as medium-risk suspicious rather than malicious.