relavate

SUSPICIOUS: The skill is internally coherent and uses an official npm-distributed CLI from the same vendor, so install trust is reasonably aligned with purpose. The main concern is data-flow integrity: all Relavate access is funneled through Membrane's intermediary service and proxy rather than directly to official Relavate APIs, creating moderate third-party trust and credential-forwarding risk even though it is disclosed.