pay-for-service

SUSPICIOUS: The skill is coherent with its stated purpose of paying x402 endpoints, but it combines runtime installation of an unpinned npm CLI, credential forwarding to that CLI, and real-money payment execution to arbitrary URLs. The footprint is proportionate yet high-risk, so this is not clearly malicious, but it should be treated as a sensitive financial/payment skill with meaningful supply-chain and credential-trust concerns.