marin-software

SUSPICIOUS: the skill is mostly coherent as a Marin integration, and its CLI comes from a legitimate npm package tied to the same vendor ecosystem. However, it routes authentication and application actions through Membrane instead of directly to Marin, creating a third-party credential/data mediation layer that is broader than a simple Marin API helper and warrants medium risk.