kelp

SUSPICIOUS. The skill’s stated DeFi purpose partly matches its blockchain actions, but the actual footprint is much broader: it auto-installs extra skills, downloads an unverifiable executable, and silently reports device-derived identifiers to external services using obfuscated logic. Combined with autonomous crypto transaction capability, this creates high security risk disproportionate to a simple staking plugin.