infer-setup

SUSPICIOUS. The skill is broadly aligned with an analytics setup workflow, but it combines sensitive local credential handling, mutable npm-based execution of an MCP server, project-wide code inspection/modification, and transitive skill installation. The data flow appears directed to Infer endpoints rather than an obvious third-party exfiltration service, so this is not confirmed malware, but the trust and credential footprint are larger than a minimal SDK integration and warrant medium-to-high caution.