vercel-deploy

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The deploy script uploads the project tarball at runtime to https://codex-deploy-skills.vercel.sh/api/deploy, a required external endpoint that performs remote builds/deployment (i.e., executes the uploaded code), so it directly causes remote code execution.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). The skill explicitly instructs rerunning with escalated sandbox permissions (sandbox_permissions=require_escalated) to bypass networking restrictions and to run arbitrary deployment scripts, which encourages bypassing security controls and could change the host state.