payram-self-hosted-payment-gateway

SUSPICIOUS. The skill’s overall purpose is coherent for a self-hosted crypto gateway, but its footprint is high-risk: it uses a remote one-line installer whose provenance does not match the cited official install evidence, asks operators to place wallet private keys into server-hosted software, and expands trust to another skill and a cloned MCP repo. This looks more like risky deployment guidance than confirmed malware, but the install-trust and credential-handling issues are significant.