linkedin

SUSPICIOUS: The skill is broadly aligned with its stated LinkedIn purpose and uses an official npm-distributed Membrane CLI, so this is not overtly malicious. However, it routes authentication and API traffic through Membrane rather than directly to LinkedIn and enables externally visible write/delete actions, making the trust and data-flow footprint moderately risky for an agent skill.