altimate-data-engineering-skills

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly requires and invokes external tooling that is fetched and executed at runtime—e.g., installing/invoking the altimate-code CLI and kits (npm install -g altimate-code and altimate-code kit install AltimateAI/data-engineering-skills, corresponding repos like https://github.com/AltimateAI/altimate-code and https://github.com/AltimateAI/data-engineering-skills.git) and uses npx to run @altimate/mcp-server-dbt, which means remote code and kit instructions are retrieved and executed and can directly influence agent behavior.