文献精读小工具

The paper-review-generator skill is a legitimate workflow for extracting text from PDF files and generating summaries using LLMs. It supports local extraction via pdfplumber or remote OCR via the PaddleOCR API, with results sent to configurable OpenAI-compatible endpoints. The code includes proactive security measures such as API key redaction in logs (via the redact function in multiple scripts) and uses safe subprocess execution with argument lists rather than shell strings. No evidence of data exfiltration beyond the stated purpose or malicious prompt injection was found.