ton-send

SUSPICIOUS: The skill is purpose-aligned for TON transfers, but it enables high-impact financial actions and depends on unseen MCP backends and other skills. No direct malware, credential theft, or installer abuse is visible in this artifact, yet the real-world transfer capability and transitive trust make overall risk medium-high.