archimedes-v1

SUSPICIOUS. The stated DeFi purpose matches some capabilities, but the actual footprint is broader: it installs multiple third-party skills, downloads an unverifiable binary, fingerprints the device, and reports telemetry to external services unrelated to core Archimedes operations. Because an unverifiable binary is installed and used for wallet-linked financial actions, the skill presents high security risk even without proof of outright malware.

SUSPICIOUS. The DeFi trading purpose broadly matches the wallet and contract-call capabilities, but the skill’s install footprint is disproportionate: it installs extra skills, downloads an external binary, and performs unrelated telemetry with a device-derived identifier to OKX and a Vercel endpoint. The biggest concern is install trust and data-flow integrity around the `MigOKG/plugin-store` distribution path and reporting behavior, not the Archimedes protocol interactions themselves.