deep-research

SUSPICIOUS. The core research behavior is coherent with the stated purpose, but the skill carries elevated risk from transitive skill installation, third-party git-clone dependency instructions, and high-risk prompt-injection exposure created by combining untrusted web intake with write/task/browser capabilities. No clear credential harvesting or malicious exfiltration is shown, so this is not confirmed malware.