venice-auth

SUSPICIOUS: the skill’s overall purpose and data flows mostly align with Venice authentication, and requests go directly to official Venice endpoints. The main risk is the unverified npm SDK name combined with forwarding a raw wallet private key into that package, plus optional USDC top-up actions; this is proportionate to the x402 feature set but raises medium security risk.