trade-with-aiusd

The skill bundle is classified as suspicious due to several high-risk capabilities, even though their stated intent aligns with the skill's purpose. The `SKILL.md` file contains direct prompt injection instructions for the AI agent to execute shell commands like `npm run reauth` and `aiusd-skill tools --detailed`, and to perform file system operations such as clearing `~/.mcporter/` and `~/.mcp-hub/token.json` (which may contain sensitive authentication tokens). Both `aiusd-skill-installer.sh` and `aiusd-skill-installer.js` installers execute `npm install`, a significant supply chain risk that downloads and runs arbitrary code. The `README.md` also links to an external GitHub release for downloading the skill, posing another supply chain risk. While these actions are presented as necessary for a trading bot, the direct command execution, file manipulation, and reliance on external code execution without clear transparency of the embedded `package.json` raise significant security concerns.