figures4papers-python-plot-skill

The module is a legitimate orchestration utility, not itself malicious. However, its behavior (running arbitrary entry scripts and forwarding the full environment) makes it hazardous in supply-chain or multi-tenant scenarios. If figure directories or entry scripts are untrusted, an attacker can achieve arbitrary code execution, read environment secrets, perform network exfiltration, or modify system files. Recommendations: only run with trusted inputs; avoid forwarding the entire environment (scrub secrets or construct a minimal env); consider sandboxing (containerization, user namespace, seccomp), resource and time limits, and stricter path validation. Also fix the syntax error on the __main__ guard.