web3-trade-simulator

The skill largely aligns with its stated purpose of safe, simulated on-chain trading practice with persistent local state and post-trade scoring. However, the install chain (curl | sh from a remote URL) creates a notable supply-chain/remote-execution risk that is not mitigated by the description. The local portfolio handling is appropriate and does not involve real credentials. The data flows (onchainos reads and local writes) are coherent with the educational, non-authentic-trading intent. Overall, the footprint is mostly benign and purpose-appropriate, but the mandatory download-and-execute install pattern elevates risk to SUSPICIOUS and warrants caution and ideally a verified/anchored installation method (e.g., official package registries or signed installers).