api-gateway

SUSPICIOUS. The skill is internally consistent as a third-party API proxy, but its core design routes credentials, API calls, and authorized actions through Maton-controlled intermediary endpoints rather than official service APIs. That makes it a high-trust gateway with substantial data exposure and action risk, even without overtly malicious behavior.