mantle

SUSPICIOUS: The skill’s purpose and capabilities mostly align for blockchain analytics, and it includes good guardrails against fabricating endpoints and mutating data. Risk comes from reliance on an unverified external CLI and fully user-supplied endpoints, which creates medium trust and data-flow uncertainty even without clear malicious behavior.

SUSPICIOUS: the skill’s purpose and data flows are mostly coherent and narrowly scoped, but it relies on an unverifiable local CLI for its core function. With no confirmed official Mantle install/release path, this is primarily a supply-chain trust risk rather than confirmed malicious behavior.

SUSPICIOUS: the skill's stated purpose matches DeFi operations, but its footprint is high-risk because it enables real financial transactions and relies on a GitHub-sourced CLI as the mandatory execution path. The main issue is not obvious exfiltration; it is concentrated trust in an externally installed tool for on-chain actions with real asset impact.

SUSPICIOUS. The stated purpose and requested scope are coherent and mostly read-only, but the skill's core dependency on an unverified mantle-cli and undocumented mantle:// registries makes install/execution trust insufficient. No clear credential theft or malicious exfiltration is shown, so this is better classified as high-risk/unverified rather than confirmed malware.

SUSPICIOUS. The skill’s purpose and capabilities are internally aligned, but it is a high-impact crypto operations skill that builds unsigned DeFi transactions for external execution. The main concerns are real-world financial action enablement and reliance on an external CLI with unverified provenance in the provided text; there is no direct evidence of credential theft or covert exfiltration.

SUSPICIOUS. The stated purpose and visible capabilities are mostly coherent and restrained, but the missing backend reference leaves the key trust boundary unverifiable: transaction details and pre-state are intended for external simulation services, and the provenance of both those services and `mantle-cli` is not clearly established from the provided evidence. This is not confirmed malicious, but it has unresolved install/data-flow trust risk.