moosend

SUSPICIOUS. The skill is broadly coherent with its stated Moosend integration purpose and uses an official npm-distributed Membrane CLI, so there is no strong evidence of malware or deceptive installation. However, all authenticated access is mediated through Membrane rather than direct Moosend APIs, meaning credentials and data flow through a third-party service, and the skill can trigger real-world actions like sending campaigns. This is better characterized as a legitimate but moderately risky proxy-based integration, not malicious content.