sol-incinerator

This module behaves like an integration client for a remote service that generates and uses an API key to request transaction previews/builds for close and burn operations. No classic malware indicators are present in the client code (no local execution/persistence/commanding, fixed remote origin, no eval). The main security risks are (1) strong dependence on a hardcoded third-party endpoint that receives a generated API key and user identifiers, (2) potential sensitive-data leakage via console logging of full preview objects and inclusion of remote payloads in thrown errors, and (3) high-impact effects (close/burn intent) controlled solely by environment variables without local validation. Malware likelihood is low, but security review is warranted for logging and trust boundaries.

SUSPICIOUS. The skill is purpose-aligned and uses consistent first-party Sol-Incinerator endpoints, with no obvious malicious installer or credential-harvesting behavior. However, it gives an AI agent the ability to carry out irreversible cryptocurrency actions and route signed transactions through a third-party relay, making it high risk despite not looking overtly malicious.