zendesk-guide

SUSPICIOUS: the skill's basic Zendesk purpose is coherent, and the CLI install path looks like an official npm distribution, but the core data flow is mediated by Membrane rather than Zendesk's official API. That third-party proxy model materially expands trust and exposes Zendesk traffic and auth handling to an intermediary, making this medium risk despite low evidence of outright malware.