sap-concur

SUSPICIOUS: The skill's purpose and capabilities mostly align, and the CLI comes from an official npm package rather than an unknown binary. However, the integration routes SAP Concur authentication and API access through Membrane as an intermediary service, and the proxy/request pattern broadens data exposure beyond a direct official API path. This is not confirmed malware, but it carries medium risk due to third-party credential/data handling and unpinned latest-version execution examples.