uniswap-pay-with-any-token

SUSPICIOUS. The stated purpose is plausible, but this file's main behavior is transitive installation and self-update from remote sources, including a mutable OKX-hosted plugin-store path despite Uniswap authorship claims. The install/update footprint is broader and less verifiable than necessary for a simple payment helper, though there is not enough evidence here to call it confirmed malware.