Is buddhasource/payment-gateway-payram safe?

https://github.com/openclaw/skills/tree/main/skills/buddhasource/payment-gateway-payram

98
SAFE

This skill contains only documentation for the PayRam payment gateway service with no executable code or malicious behavior. The skill poses minimal technical security risk to the installing system.

Category Scores

Prompt Injection 98/100 · 30%
Data Exfiltration 98/100 · 25%
Code Execution 100/100 · 20%
Clone Behavior 100/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 95/100 · 5%

Findings (2)

INFO External URLs in Documentation -2

The skill documentation references external URLs (payram.com, mcp.payram.com) which are contextually appropriate for describing the service but could theoretically be used for social engineering.

INFO Monitoring Data Clarification -2

Initial monitoring showed system processes accessing sensitive files during audit setup, but analysis confirmed the skill itself did not access any sensitive data.