build

SUSPICIOUS: The core Helius/Solana capabilities align with the stated purpose, and most data flows appear to target official Helius services. Risk comes from unpinned npm-executed tooling, transitive MCP installation, and especially the skill's support for autonomous blockchain payments, upgrades, and transaction actions with real financial consequences.