moov

SUSPICIOUS: the skill's basic purpose is coherent, and its CLI install path looks legitimate, but it materially expands trust by routing Moov authentication and API traffic through Membrane infrastructure. That intermediary proxy design, combined with payment-capable actions, makes the skill higher risk than a direct Moov integration even without clear evidence of malware.