ai-image-generation

This skill documentation itself does not contain inherently malicious code, nor does it read local secrets or perform direct exfiltration. However, it recommends a high-risk install pattern (curl ... | sh) that downloads and executes a third-party CLI binary hosted on dist.inference.sh. That download-execute flow is the primary supply-chain risk: if the distribution hosts or the install script are compromised, attackers could deliver malicious binaries that harvest credentials or exfiltrate data. The documented usage will also send user prompts and image URLs to remote model backends (expected for a hosted inference platform), which may expose sensitive input to external services. Overall this is not confirmed malware, but it is a moderate-to-high supply-chain risk primarily because of the unpinned pipe-to-shell installer and remote binary execution. Users should avoid running the piped install command without inspecting the script, prefer manual verified installation from official checksums, and review the CLI's authentication/token handling and privacy policy before providing sensitive data.