uniify

SUSPICIOUS: the skill’s capabilities fit Uniify workflow automation, and the CLI install source is reasonably legitimate, but the core data flow is routed through Membrane rather than directly to Uniify. That third-party mediation of authentication and API traffic is broader than the stated Uniify-only purpose and creates meaningful security/privacy risk, though there is not enough evidence to call it malicious.