auth0-ionic-vue

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill instructs the agent at runtime to fetch the latest release via the GitHub API (e.g., gh api repos/auth0/auth0-vue/releases/latest → https://api.github.com/repos/auth0/auth0-vue/releases/latest) which controls dependency versions in the generated instructions, and it also includes a runtime install command that curls and pipes a remote script to sh (https://raw.githubusercontent.com/auth0/auth0-cli/main/install.sh | sh), both of which fetch external content used during execution and can control prompts or execute code.