mine

This is a minimal script-launcher wrapper that executes a bundled PowerShell script (bootstrap.ps1) using -ExecutionPolicy Bypass and forwards all caller arguments directly into that script. The fragment itself shows no explicit malicious actions, but the execution-policy bypass plus unconditional local script execution are notable risk indicators. Determination of actual malware/data theft/exfiltration requires reviewing bootstrap.ps1.

SUSPICIOUS: the skill's mining/validation purpose broadly matches its commands, but it combines supply-chain installs, hidden command execution, transitive skill installation, third-party gateway credential use, and autonomous crypto-adjacent actions. The main concern is disproportionate operational and financial scope for an agent skill, not confirmed malware.