python-executor

SUSPICIOUS: The core function is coherent—a remote Python sandbox via inference.sh—and the CLI installer appears to be official same-org infrastructure, which lowers supply-chain concern. However, the skill materially expands agent capability to arbitrary remote code execution with web scraping/automation, broad belt CLI access, and transitive skill installation instructions, making overall risk medium even without clear malicious intent.