paper-2-web

This SKILL.md specification appears coherent and consistent: the declared capabilities (Paper2Web, Paper2Video, Paper2Poster) align with the inputs, required APIs, and system dependencies described. There is no direct evidence of malicious code or deceptive data flows within this specification. The primary security concern is data exposure: the pipeline will send paper content and metadata to external services (OpenAI and optionally Google Search) which may be inappropriate for unpublished or sensitive research unless the user understands the privacy implications. Additional caution is warranted around third-party dependencies (requirements.txt) and optional binaries (Hallo2) which are outside this document. Overall the skill is benign in intent but carries moderate confidentiality risk if used with sensitive documents.