htmx

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill includes runtime dependencies that fetch and execute remote JavaScript (e.g., https://unpkg.com/htmx.org@2.0.4, https://unpkg.com/htmx-ext-ws@2.0.0/ws.js, https://unpkg.com/htmx-ext-sse@2.0.0/sse.js, and https://unpkg.com/alpinejs@3.x.x/dist/cdn.min.js), which are required for the examples and will execute code from those external URLs at runtime.