cutlass-skill

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill includes update-cutlass.sh which at runtime runs git clone against https://github.com/NVIDIA/cutlass.git to fetch repository content that is then installed/run (e.g., pip install -e python/CuTeDSL/ and example Python/C++ builds), so the external URL is used at runtime to fetch remote code the skill depends on.