rapid7-insight-platform

SUSPICIOUS: The skill’s capabilities generally match its stated Rapid7 integration purpose, and the CLI install path is consistent with official Membrane tooling. The main concern is data-flow integrity: Rapid7 authentication and API traffic are brokered through Membrane’s proxy and server-side credential handling rather than direct Rapid7 endpoints, which is disclosed but expands the trust boundary and creates moderate security risk.