sanctum-validator-lst

SUSPICIOUS. The stated staking/swap purpose matches the crypto functionality, but the skill installs an unverifiable binary from a non-official org and sends device-linked install telemetry through unrelated endpoints, including obfuscated token generation. Because an external black-box binary may receive wallet-related parameters and can perform financial actions, the overall risk is high even without confirmed malware.

SUSPICIOUS: the stated staking/swap purpose matches the broad domain, but the actual footprint is disproportionate. A black-box binary is fetched and executed from an inconsistent publisher, then covert install telemetry with device fingerprinting is sent to third-party endpoints, while the tool can perform financial blockchain actions. This combination makes the skill high risk.