ui-mockup-visualizer

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's runtime (assets/mockup-runtime/viewer.mjs and the HTML templates) dynamically imports and executes remote JavaScript from the Svelte CDN at https://esm.sh/svelte@5.39.6 (including the compiler via https://esm.sh/svelte@5.39.6/compiler) and also loads the Tailwind CDN script at https://cdn.tailwindcss.com, so it fetches and runs required remote code at runtime that the skill depends on.