R ggplot Quickplot

The skill bundle contains shell scripts (run_docker.sh, run_singularity.sh, and run.sh) that are vulnerable to shell injection because they do not sanitize the input file path argument before using it in command substitutions and path evaluations. Additionally, the scripts automatically invoke 'install.packages' in R, which presents a supply chain risk by executing code from external repositories during setup. While these appear to be unintentional security flaws rather than intentional malware, they constitute high-risk behaviors in an automated agent environment.