ai-marketing-videos

The skill itself is coherent with its stated purpose (AI marketing video generation) and does not contain direct malicious code in the provided text. However, it relies on high-risk supply-chain patterns: a curl|sh installer, transitive npx skill installs, and forwarding of authentication to hosted inference services. These patterns create realistic credential-forwarding and supply-chain compromise risks. Recommend treating this skill as moderately high risk until installers and transitive packages are audited and users are instructed to verify checksums and avoid running unverified pipe-to-shell commands. Avoid running the default curl|sh pipeline and review any npx-installed skills before use.