stripe

SUSPICIOUS: the skill is coherent as a Stripe integration, but it routes authentication and Stripe operations through Membrane instead of Stripe's official API, creating third-party credential and data-path trust. Installation source is reasonably legitimate, so this is not strong malware evidence; the main concerns are intermediary credential handling, mutable CLI install, and the ability to perform consequential financial actions through a dynamically extensible action layer.