openfin-onchain

SUSPICIOUS: the skill is broadly aligned with its stated crypto purpose, but it grants an AI agent the ability to trigger irreversible token transfers from an embedded wallet. The main risks are autonomous financial action, unclear publisher/install provenance for the prerequisite setup, and transitive trust in other OpenFin skills/services rather than obvious credential theft or covert exfiltration.