overledger

SUSPICIOUS. The core behavior is mostly coherent for a Membrane-based Overledger integration, and the CLI install path appears to be an official npm distribution rather than an opaque binary. However, the skill routes authenticated Overledger access through Membrane's proxy, uses broad generic request execution, and advertises an implausibly expansive scope. This is not confirmed malware, but it carries meaningful trust and data-flow risk because a third-party platform mediates API calls and potentially sensitive blockchain operations.