中文 网站部署

The skill provides a workflow for deploying websites using Docker and SSH, which requires high-risk permissions such as 'exec' and 'write'. While the behavior aligns with the stated purpose, the deployment templates in SKILL.md are vulnerable to shell injection because they use unquoted variables (e.g., $PROJECT, $USERNAME) in shell commands. There is no evidence of intentional malice, but the lack of input sanitization and the requirement for Docker Hub credentials and server access present a significant security risk.