surf

SUSPICIOUS. The core crypto-data purpose matches the CLI/API behavior, and domains/install sources are mostly coherent with Surf branding. However, the skill expands scope by repeatedly installing/updating a vendor binary, modifying project agent-routing files, committing changes, and offering feedback uploads that include recent conversation context. This looks more like a growth/distribution layer around a crypto data CLI than a minimal data-query skill; not confirmed malicious, but medium risk due to supply-chain trust and outbound data flows.