courier-notification-skills

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). https://www.courier.com/docs/llms.txt is explicitly instructed in the skill to be fetched at runtime to obtain live API documentation that the agent must parse and use to shape prompts and generated code, so external content would directly control agent instructions.