create-ppt-with-nano-banana

SUSPICIOUS: The core PPTX-building behavior and npm dependencies fit the stated purpose, but the skill also reads raw wallet JWT/token data from a local config and sends payment authorization to a FluxA proxy endpoint for paid image generation. This is not clearly malicious and appears purpose-related, yet the credential handling and external payment/data flow are more sensitive than a typical presentation skill, so overall risk is medium.