opsgenie

SUSPICIOUS. The skill’s purpose and capabilities are mostly aligned, and the CLI install source appears legitimate and same-vendor via npm. The main concern is data-flow integrity: all Opsgenie access is funneled through Membrane as an intermediary/proxy rather than directly to official Opsgenie endpoints, which expands trust and exposes incident data to a third party. Risk is moderate rather than malicious because the behavior is openly documented, credentials are not harvested locally, and the install path is verifiable.