agent-card

SUSPICIOUS: The skill’s capabilities largely match its stated payment-card purpose, but it grants an AI agent high-impact financial actions and access to full card credentials. No clear malicious installer or unrelated credential harvesting is present, yet the opaque MCP backend and real-world payment effects make the overall risk high.