researching

SUSPICIOUS: the core research behavior is broadly consistent with the stated purpose, but the skill expands its trust boundary by spawning sub-agents, invoking other skills/plugins, and optionally consuming external untrusted content while retaining write/tool capabilities. No direct malware or credential-stealing behavior is evident, but the transitive-trust and prompt-injection exposure make it medium risk.