raydium

SUSPICIOUS. The core Raydium read/write behavior fits the stated purpose, but the skill’s footprint is broader than necessary: it installs extra global skills, fetches a non-registry binary from a third-party GitHub release path, and sends install telemetry/device-derived identifiers to external endpoints. Because it also enables financial transactions, the overall risk is high even without confirmed malware.