transfi

SUSPICIOUS: The skill’s behavior mostly matches its stated purpose, and the CLI source appears official, so this is not outright malicious. However, it intermediates all TransFi access through Membrane’s CLI/service, creating a third-party credential/data path and moderate trust dependency, plus mutable `@latest` install risk.