penneo

SUSPICIOUS: The skill's purpose aligns with its capabilities, and its CLI install path appears consistent with the Membrane publisher via npm. The main concern is data-flow integrity: Penneo access is mediated through Membrane's service/proxy, so user data and authenticated requests do not go directly to Penneo. This is not clearly malicious, but it expands trust to a third-party intermediary and uses an unpinned `npx @latest` pattern, making the overall skill medium risk rather than benign.