dapp-hyperliquid

SUSPICIOUS: the stated Hyperliquid trading purpose is plausible, but the actual footprint is not proportionate or trustworthy. It installs an external CLI through an unpinned raw script from a personal GitHub account, then uses a private key for wallet-backed trading and account access through that CLI. This combines supply-chain risk, credential forwarding, and autonomous financial action in a way that is inconsistent with a safely scoped official OKX skill.