nano-banana-2

The skill aligns with its stated purpose of enabling image generation/editing via the Gemini 3.1 model through a CLI, including multi-image input and grounding options. However, it relies on downloading and executing a remote installer/binary from non-official package registries, which introduces supply-chain and execution-trust risks. There is a legitimate use-case for a CLI-based image model, but the distribution mechanism (curl|sh to fetch installer, binary from dist.inference.sh) elevates risk. Data flows include potential real-time grounding via Google Search, which adds privacy considerations for input data. Overall, the footprint is suspicious-to-moderate rather than clearly benign, given the download-execute pattern and external data interactions. Recommend treating as SUSPICIOUS with caution and require verifiable signing, pinned hashes, and a clear, auditable supply-chain for the binary before broad usage.