Back to plugin

Security audit

Perplexity Research

Security checks across malware telemetry and agentic risk

Overview

The package behavior matches its stated purpose: it runs a bundled Python CLI that uses an AISA API key to perform multi-source research; nothing in the files attempts unrelated access or persistence.

This skill is coherent: it uses AISA_API_KEY to send queries to https://api.aisa.one and returns results. Before installing, ensure you trust Aisa (aisa.one) and are comfortable that your API key will be used for network calls and may incur usage/charges. Also note a metadata inconsistency in the registry listing (it claimed no env vars required while the packaged skill requires AISA_API_KEY); confirm you supply the key only if you intend to let the skill make remote queries. If you need stricter isolation, run the included Python script manually in a controlled environment rather than enabling autonomous invocation.

VirusTotal

No VirusTotal findings

View on VirusTotal

Static analysis

No suspicious patterns detected.