nocrmio

SUSPICIOUS: The skill’s purpose is plausible, and the CLI source is consistent with the publisher, but the actual integration routes NoCRM.io auth and data through Membrane rather than directly to NoCRM.io. That third-party credential/data mediation and unpinned CLI execution create medium risk even without clear malware indicators.