tito

SUSPICIOUS. The skill's Tito-management purpose broadly matches its capabilities, and the Membrane CLI install path is vendor-consistent via npm. However, all Tito authentication and API traffic are routed through Membrane rather than directly to Tito, creating a third-party intermediary for credentials and data; combined with unpinned `npx @latest` execution, this makes the skill moderately risky even though it is not clearly malicious.