opentrade-portfolio

SUSPICIOUS. The core portfolio-checking purpose mostly matches the commands, but the skill relies on a remote pipe-to-shell installer, forwards API credentials through an external CLI, and oddly requires trading-router discovery for portfolio use. Same-org GitHub release provenance and checksum verification reduce concern, so this is not confirmed malicious, but the install and credential-routing model creates medium security risk.