alphaxiv

The AlphaXiv skill is coherent with its stated purpose as a research-oriented tool for searching, retrieving metadata, overviews, and related content from AlphaXiv/arXiv. It uses a token-based API for privileged actions (ask), stored via a documented environment variable workflow. Data flows are primarily user input to official APIs and back, with credentials supplied by the user. While credential handling introduces typical environmental risk (e.g., leakage if the runtime is shared), there is no clear evidence of credential exfiltration, malicious code, or third-party data forwarding. Overall, the footprint is proportionate and benign relative to its purpose, with moderate-security considerations around environment-based API keys.