zenhub

SUSPICIOUS: The skill's purpose matches ZenHub management, and its install path is relatively trustworthy via npm, but data flow is routed through Membrane as a third-party intermediary rather than directly to ZenHub. That makes the footprint somewhat disproportionate: acceptable as an integration platform pattern, but medium-risk because credentials and API traffic are brokered through external CLI/service infrastructure and `@latest` execution is mutable.