business-document-generator

[Skill Scanner] Installation of third-party script detected The skill provides a safe, self-contained workflow for generating PDFs from local templates using user-provided data. It uses standard dependencies and operates entirely on local files with explicit output control. Documentation acknowledges current feature limits (cover-page filling) and suggests straightforward extension paths. Overall, the approach is appropriate and low-risk for its intended use. LLM verification: This skill's stated purpose and requested capabilities are coherent and proportionate: reading JSON, applying data to local PDF templates, and writing generated PDFs are appropriate for a document-generation skill. There is no explicit malicious behavior in the provided documentation. Primary security concerns are supply-chain: unpinned pip installs (pypdf, reportlab) and the fact that the actual script (scripts/generate_document.py) is not included for review, leaving open the possibility of hi