explainer-video-guide

This document is a legitimate production guide for generating explainer videos using the infsh CLI and hosted generative apps. The content itself is not malicious, but the recommended installation and usage patterns present supply-chain and data-exfiltration risks: use of curl | sh install, single-domain-hosted checksums, and routine uploading of local media and credentials to remote hosted services. I assess moderate security risk: treat the installer and remote service as untrusted until independently verified, prefer signed/package-managed releases, use least-privilege tokens, and avoid uploading sensitive assets.