gate-pay-x402

SUSPICIOUS: the skill’s core payment and wallet capabilities broadly match its stated Gate Pay x402 purpose, and it includes sensible consent and secret-handling guardrails. However, it carries medium security risk because it supports irreversible real-world payments, uses an unpinned npm-executed local MCP, and depends on a discovery MCP hosted on a non-obviously official dev domain with unclear publisher trust.