rock-rms

SUSPICIOUS: The skill’s capabilities broadly match its stated Rock RMS integration purpose, and the CLI install source is a normal npm package rather than an unverifiable binary. The main concern is data-flow integrity: Rock RMS authentication and API traffic are routed through Membrane as a managed intermediary, which is documented and intentional but introduces third-party credential/data handling that is broader than a direct Rock RMS integration.