opn

SUSPICIOUS. The skill’s stated purpose is OPN integration, but its actual operation depends on installing and trusting the Membrane CLI and routing authentication, connector setup, and action execution through Membrane-managed infrastructure rather than direct OPN APIs. The install source itself looks legitimate and same-vendor, so this is not confirmed malware, but the third-party gateway model and credential/data handling are broader than a straightforward OPN skill and create meaningful security risk.