antom-integration

SUSPICIOUS: The skill’s stated purpose is legitimate and payment-related guidance is broadly aligned, but it depends on dynamic remote documentation fetched via curl from partly unverifiable endpoints outside the main Antom docs domain. There is no clear credential theft or malicious exfiltration, yet the remote-content dependency and recursive doc ingestion create medium supply-chain and prompt-injection risk.