Larrybrain

The agent may route many ordinary requests into a marketplace search/install flow.

This broadly redirects uncertain user tasks through the LarryBrain marketplace before other approaches, which can lead to external skill installation even when the user did not explicitly ask to install a skill.

A malformed or unsafe downloaded skill package could overwrite local skill files or place files in unexpected locations if the agent follows paths naively.

The instructions tell the agent to write remote-provided file paths into the local skills directory, but the artifact does not show path validation, overwrite controls, or user review.

Your LarryBrain API key is used to authenticate requests to the LarryBrain service.

The skill uses a provider API key for premium downloads, which is purpose-aligned, but users should understand that the key is sent to LarryBrain and the registry metadata did not declare required env vars.

Installing a compromised or overly powerful marketplace skill could change the agent's behavior in later sessions.

The core workflow downloads complete skill packages from a remote marketplace and installs them locally, but the artifact does not show cryptographic verification, a trusted manifest, or a required human review step before install.

A downloaded skill could cause code, package installs, or long-running services to run on the user's machine.

After downloading remote content, the skill tells the agent to follow setup instructions that may install packages or start services, without clearly requiring sandboxing or user approval.

Future agent sessions that read installed LarryBrain skills may perform update-check logic because of added instructions.

The skill intentionally prepends persistent instructions to installed SKILL.md files, which affects future agent context. The update text is mostly defensive, but persistence should be visible to the user.

Users may trust downloaded skills more than is warranted and may not review them carefully before installation.

The safety claims are broad and may overstate assurance for a workflow that downloads remote skill files and sends the LarryBrain API key to the LarryBrain API for premium installs.