gcp-spark

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs loading remote Spark connector jars at runtime (e.g. gs://spark-lib/spanner/spark-3.5-spanner-1.2.2.jar and gs://spark-lib/spanner/spark-3.5-spanner-1.3.0.jar) via --jars, which fetches and executes remote code as a required dependency, so these URLs meet the criteria for a runtime-executed external dependency.