prestashop

SUSPICIOUS. The skill’s capabilities largely match its stated PrestaShop automation purpose, and the CLI comes from the official npm package, so this is not strong malware evidence. However, all authentication and store interactions are routed through Membrane as an intermediary, requiring trust in a third-party platform and creating non-official data flows; combined with mutable `@latest` installs, this makes the skill medium risk rather than benign.