Skill Tiktok Video Pipeline

The `scripts/tiktok_overlay_engine_v3.py` script is vulnerable to `ffmpeg` filter injection. User-controlled arguments like `--pill-color` and `--text-color` are directly concatenated into the `ffmpeg` `drawtext` filter string without proper escaping, allowing an attacker to inject arbitrary `ffmpeg` filters. This can lead to information disclosure, denial of service, or potentially remote code execution. While `scripts/generate.js` uses `JSON.stringify` to mitigate direct shell injection for its arguments, the downstream `tiktok_overlay_engine_v3.py` script introduces a critical vulnerability.