pattern-router

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill runtime calls the PostPlus hosted capability API (POST to ${config.apiBaseUrl}/api/postplus-cli/hosted/capability, derived from the POSTPLUS_API_BASE_URL config/env) to run hosted capabilities (e.g., media-generation), which the skill requires and which executes remote operations whose outputs directly affect the agent workflow.