multi-swap

SUSPICIOUS: the skill’s purpose matches batch token swaps, but it enables autonomous financial transactions and depends on an unpinned external npm CLI executed via npx. No clear credential-harvesting or exfiltration behavior is shown, so this looks more like a high-risk transaction skill than confirmed malware.