Wallet Architecture Review

SUSPICIOUS. The stated purpose is coherent for a code-review skill, but the dependency on an ambiguous `codebase MCP` and the lack of clear auth/API/data-flow details make trust verification incomplete. Main risk is untrusted MR content influencing an agent that may post comments, not confirmed malware or credential theft.