Video Frame Analyzer

The skill provides legitimate video analysis functionality but employs high-risk behaviors, specifically the execution of shell commands and Python scripts to process user-provided files. The instructions in SKILL.md direct the AI agent to run bash commands that interpolate user-provided video paths (e.g., `python "$SKILL_DIR/smart_extract.py" "你的视频路径.mp4"`), which presents a shell injection vulnerability if the agent does not properly sanitize the input. While the included scripts (smart_extract.py and extract_frames.py) appear benign and focused on frame extraction, the reliance on shell execution and broad file system access for writing frames and reports meets the criteria for a suspicious classification.