sweep-import

The skill is purpose-aligned and not overtly malicious, but it is intrinsically high risk because it handles raw private keys and authorizes irreversible crypto asset transfers. Treat as suspicious/high-risk operationally due to financial-action capability, not because of clear exfiltration or deceptive install behavior.

This artifact is highly suspicious and strongly consistent with a malicious supply-chain component designed for cryptocurrency wallet/token draining. The embedded payload explicitly references importing/controlling private keys/WIF, fetching remote data to select spendable outputs, and constructing/executing token transfer (“sweep”) operations—typical of theft automation. While the exact executable code is not provided, the encoded operational instructions themselves indicate malicious intent. Treat as unsafe and do not install/use without thorough isolated analysis and remediation.