lifi

SUSPICIOUS. The stated bridge/swap purpose is plausible, but the actual footprint is broader: it installs third-party skills, executes remote installers, downloads an unverifiable binary from a non-LI.FI publisher, performs device-fingerprinting telemetry to unrelated endpoints, and enables financial actions. The telemetry and provenance issues are disproportionate to the claimed purpose, and the unverifiable binary forces a high security-risk classification.