quickmailio

SUSPICIOUS: The skill is internally coherent and uses a normal npm-installed CLI, but it routes QuickMail access and authentication through Membrane rather than the official QuickMail API directly. That third-party credential and data mediation is the primary risk; there is no strong evidence of malware or hidden exfiltration beyond the disclosed proxy design.