starton

SUSPICIOUS. The skill is internally coherent as a Membrane-hosted connector guide, and the CLI source looks proportionate and official, but the actual integration works by routing Starton authentication and API traffic through Membrane rather than directly to Starton. That intermediary credential/data path and mutable `npx @latest` usage raise meaningful security risk even without clear malicious intent.