flux-image

SUSPICIOUS: the core image-generation purpose is coherent, and the remote data flow to hosted inference apps is broadly consistent with that purpose. The main risk comes from external CLI trust and repeated transitive skill-install instructions, which expand the agent's trust boundary beyond this single skill.