curve-plugin

No direct malicious payload or obfuscation is evident from this fragment because it is only a manifest/config. The main security concern is that the declared network endpoints include atypical plugin-management/install and wallet plugin download/report URLs in addition to normal Curve/RPC endpoints. This raises supply-chain risk that should be validated by reviewing the Rust implementation for network-driven install/update behavior, integrity checks, and any execution/storage of downloaded content.