xaut-trade

The skill presents a coherent narrative for automated XAUT trading via Foundry cast with market and limit orders, but includes high-risk supply-chain patterns (curl | bash for installer), heavy credential access (keystore, private keys), and external data flows that could be leveraged for credential exposure or data leakage if not properly controlled. The combination of unverifiable binary installation and credential-forwarding potential, plus transitive dependency risk, places the overall assessment in Suspicious range with notable security concerns; not clearly malicious by intent, but requires stringent provenance, least-privilege execution, and explicit user consent/approval for all credential usage and external data access.