health
Warn
Audited by Snyk on May 28, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.80). The health scripts call npx (e.g., "npx skills path tw93/Waza" and the suggested "npx skills add tw93/Waza -a claude-code -g -y"), which can fetch a remote npm package from the registry at runtime and provide/execute helper scripts, so external code may be fetched and executed during the skill run.
Issues (1)
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata