Minara

Name/description (crypto trading & wallet) matches requested artifacts: a 'minara' CLI binary, primary credential MINARA_API_KEY, and an npm install of the Minara CLI. The declared config path (skills.entries.minara.enabled) is an internal enable flag and is consistent with a skill that must be opt-in.

SKILL.md instructs the agent to check local CLI credentials (~/.minara/credentials.json), run 'minara login' (device-code/email flows), and execute a broad set of fund-moving commands. These actions are expected for a wallet/trading skill, and the file explicitly requires user confirmation before any fund movement. Note: the agent will access local credential files and relay device codes/URLs to the user as part of login flows — that is sensitive but proportional to the skill's purpose.

Install uses npm (minara@latest) to create a global 'minara' binary. Installing an unpinned 'latest' npm package is a common but non-negligible supply-chain risk; however the mechanism itself is proportionate to providing a CLI-based skill.

Only the Minara API key is declared as the primary credential (MINARA_API_KEY) and the skill reads the CLI credentials file. No unrelated credentials or broad environment access are requested. The requested access is necessary for wallet and trading operations, but is powerful (it controls funds), so treat the key and local credentials as highly sensitive.

Skill is not forced 'always' present and allows autonomous invocation (the platform default). It does not request special system-wide privileges beyond reading its own CLI credentials and enabling its entry in the skills config. Nothing indicates it modifies other skills or system config.