moonwell

SUSPICIOUS. The DeFi purpose broadly matches the Moonwell commands, but the skill’s footprint is disproportionate: it installs an unverifiable binary, chains in extra skills, and performs hidden install telemetry with device fingerprinting to third-party endpoints. Financial actions are expected for this domain, but the install and data-flow model is not minimally scoped or fully trustworthy.