agent-search

SUSPICIOUS: the skill’s purpose and data flows largely match a web-search function, and the named provider endpoints appear legitimate. However, the core executable is an undocumented local CLI with unverifiable provenance, and it may receive API keys, so the install/execution trust story is incomplete enough to raise the overall risk.