domo-js

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill includes a vanilla-JS CDN script that is fetched and executed at runtime — https://app.unpkg.com/ryuu.js@5.1.2 — which is a required dependency and thus can execute remote code and influence agent behavior.