listclean

SUSPICIOUS: the skill’s purpose aligns with Listclean integration, and the CLI install source is an official npm package, so this is not overt malware. However, the skill routes authentication and API traffic through Membrane instead of directly to Listclean, creating a third-party proxy/data-flow concern, and uses unpinned CLI execution. Overall this is coherent but carries medium risk due to intermediary routing and mutable install practices.