mainstream-spot-order

SUSPICIOUS: the skill’s trading, backtesting, and OKX integration are broadly aligned with its purpose, and the `onchainos` installer appears same-org rather than obviously rogue. However, it still creates high security risk because it enables autonomous real-world cryptocurrency trading and routes trading authority through an external CLI binary. This is not confirmed malware, but it is a high-risk skill.