message-bird

SUSPICIOUS: the skill is coherent in purpose, but its actual data flow is through Membrane as an intermediary rather than direct MessageBird APIs. The npm-installed CLI appears vendor-consistent and not overtly malicious, yet credential handling and service data are delegated to a third-party platform, which materially increases trust and privacy risk.