git-hooks

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The .pre-commit-config.yaml references remote hook repositories (e.g. https://github.com/pre-commit/pre-commit-hooks) which are fetched at runtime by pre-commit and execute code as required hooks, so they can directly run remote code used by the skill.