customer-persona

This skill is functionally aligned with its stated purpose (researching and generating customer personas and avatars) but includes supply-chain and privacy risks that are disproportionate to the declared functionality. The primary risk is the recommended install pattern (curl | sh) and reliance on a third-party CLI/distribution (inference.sh / dist.inference.sh) that centralizes network traffic and credentials. While there's no direct evidence of backdoors or embedded malicious code in the SKILL.md itself, the installation and runtime model (download-and-execute, centralized auth, routing queries/prompts through inference.sh and downstream apps) creates moderate-to-high supply-chain and data-exposure risk. Users should verify checksums, prefer vetted package distribution methods, review the CLI source before running it, and be cautious about sending sensitive or proprietary data through the described flow.