defillama-setup

Mostly consistent with a hosted DefiLlama MCP setup, but the forced `npx skills add` step introduces a notable transitive-trust and autonomy risk. Overall this is better classified as suspicious/medium risk than malicious because the network endpoints align with the stated publisher, yet the skill asks the agent to install more skills without user confirmation.