demo

[Skill Scanner] Installation of third-party script detected All findings: [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] [CRITICAL] command_injection: Installation of third-party script detected (SC006) [AITech 9.1.4] [HIGH] data_exfiltration: Credential file access detected (DE002) [AITech 8.2.3] [HIGH] data_exfiltration: Credential file access detected (DE002) [AITech 8.2.3] [HIGH] command_injection: Backtick command substitution detected (CI003) [AITech 9.1.4] This skill's described capabilities are coherent and proportionate to its stated purpose of producing demo recordings for PR UI changes. No direct malicious behavior is visible in the provided skill instructions. The primary security considerations are operational: (1) optional transmission of narration text to ElevenLabs when an API key is provided (users should avoid sending sensitive data to third-party TTS), (2) the general risk of executing project-local code (npx tsx lib/cli.ts) and running Playwright/ffmpeg, and (3) ensuring the MCP server is local and trusted. Overall the skill appears benign in intent but requires the normal supply-chain caution when executing repository code and using external APIs.