web-research

SUSPICIOUS. The stated purpose is legitimate and there is no evidence of malicious installers, credential harvesting, or third-party routing, but the skill is over-permissioned for web research: it combines untrusted web intake with Write and Bash access, which creates a high indirect prompt-injection risk. The missing `AskUserQuestion` tool also shows instruction/tool mismatch.