pulumi

SUSPICIOUS. The skill is not overtly malicious and uses an official npm package from the same vendor, but its actual footprint is a Membrane platform integration that proxies Pulumi access through a third party. That creates medium risk from intermediary data flow and credential trust expansion, plus low supply-chain risk from installing an unpinned external CLI.