manifestly-checklists

SUSPICIOUS: The skill is internally coherent and uses an official npm-distributed CLI from the same publisher, so it is not overt malware. However, it introduces a significant third-party mediation layer: authentication, credential refresh, actions, and raw API requests are routed through Membrane rather than directly to Manifestly, which increases trust and data-flow risk beyond a direct integration.