till-payments

SUSPICIOUS: The skill is mostly coherent with its stated purpose and uses an official same-vendor CLI from npm, so it does not look like overt malware. The main risk is data-flow integrity: Till Payments access is mediated through Membrane's proxy and credential-management service rather than direct Till API calls, which introduces a significant third-party trust dependency; combined with broad action/request capability and an unpinned `npx @latest` example, this makes the skill medium risk rather than benign.