snakemake-workflow-engine

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The Snakefile includes a rule that specifies a container image "docker://broadinstitute/gatk:4.4.0.0", which Snakemake will pull and execute at runtime (remote code execution via container image).