taskade

SUSPICIOUS: the skill's purpose is coherent, and the CLI install source appears legitimate, but all authentication and API traffic are routed through Membrane rather than directly to Taskade. That third-party credential and data mediation is clearly disclosed yet disproportionate to a simple Taskade integration, so the main concern is data-flow integrity and credential forwarding rather than outright malware.