mmk-paymint-bulk-resend

The skill's functional scope is narrow and aligned with bulk SMS resend, but it depends on an `mmk` CLI whose provenance is not publicly verifiable from the supplied evidence. Because shared auth likely feeds credentials into that binary, this is best classified as suspicious/high-risk supply-chain exposure rather than confirmed malware.