simplehash

SUSPICIOUS: the skill's install path is relatively standard and same-vendor, but its purpose statement is internally inconsistent and all auth/data are funneled through Membrane as a third-party intermediary instead of directly to SimpleHash. This looks more like a generic Membrane connector wrapper than a narrowly scoped SimpleHash skill, creating medium security risk but not clear malicious intent.