paymo

SUSPICIOUS. The skill's install path is relatively normal and vendor-aligned, but its actual footprint is a third-party gateway pattern: Paymo access is mediated through Membrane CLI and Membrane servers rather than direct official Paymo API calls. The capability is broadly coherent with a Paymo integration, yet the intermediary data flow, credential forwarding, mutable CLI install, and mismatched entity description make the skill medium-risk and not fully proportionate to a simple Paymo connector.