qwen-image-2

SUSPICIOUS: The skill is mostly coherent for an inference.sh platform wrapper, but it routes model use and authentication through a third-party CLI/service instead of Alibaba directly, and it encourages transitive skill installation. This is not confirmed malware, but it carries medium risk from supply-chain trust, credential forwarding, and intermediary data flow.