codex-essentials

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.85). The skill instructs running remote installers—e.g., "codex mcp add github -- npx -y @modelcontextprotocol/server-github" and "pip install cli-anything-hub && cli-hub install browser"—which use npx/PyPI to fetch and execute third‑party package code at install/runtime, so external content would be executed and could control the agent.