javascript-sdk

Overall, the code fragment represents a coherent and proportionate SDK intended to interface with inference.sh services. There are no evident malicious behaviors, credential harvesting patterns, or unnecessary data exfiltration signals in the provided content. The primary risks revolve around proper secure handling of API keys in frontend contexts and ensuring proxy configurations do not inadvertently leak secrets. Treat as BENIGN with standard supply-chain considerations; monitor for secure deployment practices in real usage.