wallarm

SUSPICIOUS. The skill's general purpose matches Wallarm management, and the CLI install source is reasonably legitimate, but the core data flow is through Membrane rather than Wallarm's official API endpoints. That intermediary design creates notable credential-forwarding and data-routing risk disproportionate to a simple Wallarm integration, though there is not enough evidence to call it malicious.