endor-cicd

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The CI/CD templates download and execute a remote binary at runtime from https://api.endorlabs.com/download/latest/endorctl_linux_amd64 (curl ... -o endorctl; chmod +x; ./endorctl), so the skill fetches and runs remote code as a required dependency.