bank-statement-processing

SUSPICIOUS: The core capability fits the stated purpose, and the primary network target is the official Wells Fargo domain, but this is a high-sensitivity financial automation skill that collects live bank credentials/OTP and exports derived data to SerenDB. The main concerns are trust gaps around the unshown pip dependencies, the CLI/documentation mismatch for Seren tooling, and the misleading 'read-only' claim despite filesystem and database writes. No clear evidence of credential theft or malicious exfiltration is present, so this is not confirmed malware, but it carries meaningful security risk.