rwa-alpha

SUSPICIOUS: the skill’s purpose matches its trading capabilities, and the external CLI appears to be an official OKX tool, so this is not clearly malicious. However, it is a high-risk agent skill because it can autonomously trigger real financial transactions from untrusted external data, depends on a third-party CLI trust boundary, and exposes a localhost state API. The main concern is dangerous scope and autonomy, not hidden credential theft.

SUSPICIOUS. The skill’s capabilities align with its stated trading purpose, but it enables autonomous real-money trading and depends on an external CLI trust boundary. Same-org install evidence reduces malware concern, yet the combination of live fund movement, external data-driven decisions, and command execution makes this a high-risk skill.