paystack

SUSPICIOUS: The skill's purpose and capabilities mostly align, and the CLI install path is consistent with the publisher, so this is not overtly malicious. The main concern is data-flow integrity: all Paystack access is funneled through Membrane's CLI/proxy, which expands trust to a third-party intermediary that can see or mediate sensitive payment operations and data. Risk is medium overall due to credential delegation, proxy-based API access, and support for consequential payment actions.