paperspace

SUSPICIOUS: The skill's core purpose and commands are mostly coherent, and the CLI comes from an official npm package rather than an unverifiable binary. However, it inserts Membrane as an intermediary for authentication and API access to Paperspace, so credentials and data flows are not direct to the official service. This is not clearly malicious, but the third-party proxy architecture and mutable CLI execution increase trust and data-handling risk beyond a simple Paperspace integration.