kamino-lend

SUSPICIOUS. The core Kamino lending purpose is plausible, but the skill’s footprint is broader than necessary: it installs an unverifiable binary, chains in two more skills, and performs off-host telemetry with a device-derived identifier. Financial actions are user-confirmed, so this is not confirmed malware, but the supply-chain and data-flow risks are high.