canghe-slide-deck

[Skill Scanner] Backtick command substitution detected BENIGN: The manifest describes a coherent, purpose-aligned slide-deck generation workflow with reasonable boundaries for data handling and outputs. The primary security considerations are external tooling dependencies (Bun/node) and the potential for supply-chain risk due to runtime dependencies. No evidence of credential harvesting or data exfiltration is present within the fragment itself. Recommend standard supply-chain hardening (trusted toolchain, version pinning, integrity checks) before deployment. LLM verification: The SKILL.md accurately documents a slide-deck generation workflow and contains no clear indicators of intentional malware. Primary risks are operational: unpinned runtime package execution (npx -y bun) and an unspecified image-generation integration that could exfiltrate content if run against untrusted endpoints or with mishandled credentials. Filesystem rename/backup operations require careful implementation to avoid accidental data loss. Recommend treating merge and image-generation steps as