serphouse

SUSPICIOUS. The skill’s stated purpose matches its capabilities, and its install path is a normal npm-based CLI install rather than an overt malware pattern. However, the actual integration is not direct with SERPHouse: authentication and API access are mediated through Membrane, so user data and service credentials flow through a third-party intermediary instead of the official service API path. That makes the footprint coherent but higher-trust than the description implies, with medium security risk driven mainly by intermediary routing and unpinned CLI execution.