esputnik-automation

SUSPICIOUS. The skill is broadly aligned with its stated Esputnik automation purpose and does not use obvious malware patterns, but it routes actions and likely credentials through Composio's remote MCP service rather than directly to Esputnik, and its 'no API keys needed' claim is inconsistent with newer Composio documentation. This is a coherent but medium-risk third-party mediation skill, not confirmed malware.