soma

The skill is purpose-aligned and mostly coherent with its SOMA-network role, but it is still high risk because it enables autonomous blockchain reward actions, handles multiple sensitive credentials, pushes secrets to Modal, and uses a raw remote installer. This is better classified as suspicious/high-risk rather than malicious: the footprint fits the claimed purpose, but the trust and financial-action surface are substantial.