woocommerce

The skill presents a coherent Woocommerce integration workflow through Membrane’s CLI and proxy, with authentication managed server-side and standard REST API access to WooCommerce resources. The security footprint is modest and proportional to its purpose, relying on Membrane for credential management and API access. While there are standard supply-chain considerations for npm-based tooling, there is no evidence of unverified binaries or credential forwarding beyond the Membrane abstraction. Overall, the skill is BENIGN with some SUSPICIOUS signals limited to typical tooling risk; however, given the explicit reliance on Membrane for auth and the absence of direct local credential exposure, it remains aligned with its stated purpose.