ln-742-precommit-setup

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill's .pre-commit-config.yaml references external GitHub repos (e.g. https://github.com/astral-sh/ruff-pre-commit, https://github.com/compilerla/conventional-pre-commit, https://github.com/pre-commit/pre-commit-hooks) which pre-commit will fetch at runtime and install/execute hook code from, so these URLs constitute runtime external dependencies that execute remote code.