lazyweb-design-brainstorm

SUSPICIOUS: the core research/report behavior fits the stated design-brainstorm purpose, but the skill expands trust by invoking other local skill binaries and instructing installation of a separate Lazyweb plugin via a one-line prompt. It also mixes untrusted web content with Bash and file-writing capabilities, creating moderate prompt-injection and supply-chain risk despite no clear credential theft or overt exfiltration.