pp-coingecko

SUSPICIOUS: the core purpose is coherent for read-only CoinGecko access, but the skill relies on external CLIs, unpinned installs, optional arbitrary webhook delivery, and MCP registration. These behaviors are not clearly malicious, yet they broaden trust and data-flow scope beyond a simple API query skill.