ryver

SUSPICIOUS: the skill is internally coherent as a Membrane-based Ryver integration and uses an official npm-distributed CLI, so it is not confirmed malware. However, it routes Ryver credentials and API traffic through Membrane infrastructure rather than directly to Ryver, creating a meaningful third-party credential/data handling risk that should be explicit to users.