murlist

SUSPICIOUS. The skill’s capabilities mostly match its stated MurList integration purpose, and the CLI install path is from the official npm package rather than a raw download. The main concern is data-flow integrity: MurList access is mediated through Membrane for authentication and proxy requests, so credentials and API traffic are entrusted to a third-party intermediary instead of going directly to MurList. This is disclosed and plausibly legitimate, so it is not malicious, but the extra trust boundary plus unpinned npm/@latest execution make it medium risk rather than benign.