Email Audio Analyzer

The skill bundle contains several high-risk patterns and vulnerabilities. Most notably, it uses `execSync` in `check-email.js`, `transcribe.js`, and `analyze.js` to execute shell commands with unsanitized inputs (such as email IDs and filenames), creating a significant Command Injection risk. Additionally, `analyze.js` contains a hardcoded API key (`sk-sp-3c082728a4b0456d9aebca5a718252cb`) and attempts to read sensitive authentication files from the local filesystem (`auth-profiles.json`). While the behavior appears consistent with the stated purpose of processing Lithuanian audio emails, the lack of input sanitization and hardcoded identifiers (including a specific Telegram chat ID `1341107300`) make it dangerous in its current state.