aws-security-audit

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill declares runtime MCP dependencies that are fetched/executed (e.g., "uvx awslabs.iam-mcp-server@latest" and "uvx awslabs.cloudtrail-mcp-server@latest"), which run external code and communicate via stdio to the agent, so they can directly control prompts/behavior.