monday-code-dev

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill's runtime includes the command docker run -d --name monday-app-mongo -p 27017:27017 mongo:7, which pulls and executes a remote Docker image (docker.io/library/mongo:7) as a required dependency for local MongoDB, thereby executing remote code.