godot-testing

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill instructs installing and then executing third‑party Godot addons fetched from these git URLs (e.g. git submodule add https://github.com/MikeSchulze/gdUnit4.git addons/gdUnit4 and git submodule add https://github.com/bitwes/Gut.git addons/gut), and the runtime commands (godot -s addons/gut/gut_cmdln.gd or -s addons/gdUnit4/GdUnitRunner.gd) will execute that remotely fetched code, so they are runtime external dependencies that execute remote code.