ci-cd-security

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). These are direct GitHub release download URLs (one using the mutable "latest" path and one a direct binary for v1.2.3) which are potentially high-risk for delivering malware from an unverified/unknown repository unless you verify the repository owner, release integrity (cryptographic hash/signature), and reputation; the other link is just an issue page and not a download.