lsp-setup

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The README includes explicit installer commands that fetch-and-execute remote scripts (curl -fsSL https://bun.sh/install | bash and curl -fsSL https://install.julialang.org | sh), and Bun (required to run the skill's scripts) / Julia (required for julials) are runtime dependencies that could execute remote code if installed this way.