gate-dex-market-cli

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The setup.sh downloads and installs a pre-built binary from https://gate-dex-cli.gateweb3.cc/v${VERSION}/gate-dex-linux-x64 (resolved to https://gate-dex-cli.gateweb3.cc/v1.0.0/gate-dex-linux-x64) at install/runtime, which fetches and installs remote executable code that the skill depends on—allowing remote code execution if the hosted binary is malicious or compromised.