bd-instrumentation

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly calls out runtime fetching via $bd-docs from https://docs.bitdrift.io (e.g., "Use $bd-docs to fetch live API details from docs.bitdrift.io at each step"), which the agent relies on to determine exact prompts/instructions and dependency versions, so this external doc URL is a runtime-controlled source of instructions.