web-search

SUSPICIOUS. The skill’s purpose broadly matches web research, but it relies on a same-org pipe-to-shell installer, routes all search/extraction and auth through inference.sh’s hosted platform instead of direct Tavily/Exa APIs, grants broad `infsh` Bash scope, and encourages transitive skill installs. This looks more like a platform wrapper than a narrow web-search skill; risk is medium, driven by supply-chain hygiene, external data handling, prompt-injection exposure, and trust-chain expansion rather than confirmed malware.