manychat

SUSPICIOUS: the skill's purpose is coherent, and the CLI install path appears same-vendor and legitimate, but the integration is not a direct ManyChat client. It requires trusting Membrane as an intermediary for authentication, credential refresh, and API proxying, so ManyChat data and auth context flow through a third party. This is not confirmed malware, but it is a medium risk design with notable credential-forwarding and data-flow concerns.