workos

SUSPICIOUS. The skill's purpose broadly matches its capabilities, and the CLI install path is relatively standard, but the integration routes authentication and API traffic through Membrane rather than directly to WorkOS. That intermediary credential/data flow is a notable trust expansion and makes the skill higher risk than a direct WorkOS client, though not clearly malicious.