coal-miner

SUSPICIOUS: the skill’s crypto operations are aligned with its stated purpose, so it is not obviously deceptive, but it grants an AI agent high-impact financial capabilities, relies on a third-party reward API, and requires wallet-based transaction signing. This makes it high risk even without clear evidence of credential theft or hidden malware.