social-media-carousel

The design supports automated generation of carousel visuals via an external CLI, which is functionally appropriate but introduces non-trivial supply-chain and runtime-execution risks due to the download-and-execute installation pattern and transitive tooling. To improve safety, employ pinned, signed artifacts, verify checksums against trusted sources, avoid implicit curl|sh installs, and limit or audit transitive skill installations. If these controls cannot be established, treat as elevated risk and implement sandboxing or offline rendering with trusted components.