seedance

SUSPICIOUS. The skill’s video-generation purpose broadly matches its capabilities, but it relies on transitive skill installation, an external CLI, and official-yet-risky remote install paths. Data flows to inference.sh and, in Studio mode, to BytePlus are disclosed and plausible, so this is not confirmed malware; the main concerns are supply-chain trust and credential/data forwarding through external tooling.