sales-blueconic

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill includes an explicit local-client runtime command that fetches and executes remote code via npx for the MCP server ("npx @blueconic/blueconic-mcp") and a runtime HTTP endpoint ("https://{tenant}.blueconic.net/mcp") that the agent can call to supply model context, so remote content can be executed or directly influence prompts.