analyze-video

This skill is internally consistent with its stated purpose: extracting frames with ffmpeg, reading those frames, and editing a prepared visual transcript JSON. There are no network calls, hardcoded secrets, obfuscated payloads, or obvious exfiltration behaviors in the provided fragment. The main security considerations are operational: ensure ffmpeg/ruby commands are run locally from trusted sources, validate and sanitize any file/path inputs to avoid command/path-injection and accidental rm -rf damage, and audit the referenced helper script (prepare_visual_script.rb) before use. Overall, I find the skill benign in intent but with standard local-file-operation risks that require careful implementation and review of the helper script.