hyperliquid

SUSPICIOUS: The skill is purpose-aligned for Hyperliquid trading, and the stated data flow appears consistent with direct exchange use. However, it enables autonomous financial actions and requires a raw private key, while the npm dependency footprint is not visible; that combination creates meaningful risk even without evidence of overt exfiltration or deceptive routing.