ai-marketing-videos

The skill description aligns with its purpose of generating AI-driven marketing videos via an external CLI with a multi-step workflow. However, the bootstrap method (curl -fsSL https://cli.inference.sh | sh) and reliance on remote binaries and assets introduce supply-chain and execution risks. The presence of checksum verification is positive, but without strong, reproducible, multi-source verification and pinned binaries, this pattern remains a notable risk. Recommend safer bootstrap strategies (e.g., signed packages, reproducible builds, and multi-source pinning) and explicit asset provenance to mitigate risks.