tiledesk

SUSPICIOUS. The skill’s stated purpose matches its general capabilities, and the CLI comes from an official registry, so this is not overtly malicious. However, it routes authentication, credentials, and Tiledesk operations through Membrane as a third-party intermediary, and dynamic action creation expands remote behavior beyond a fixed connector. Main risk is delegated trust and intermediary data flow, not confirmed malware.