product-changelog

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). This skill explicitly requires the inference.sh "belt" CLI and shows runtime commands (e.g., belt app run falai/flux-dev-lora) that invoke remote apps on https://inference.sh, which will execute remote code during skill runtime and is a required external dependency.