monkey

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). This skill explicitly requires reading a user-provided repository at runtime (a local path or git URL — e.g. https://github.com/owner/repo.git) and feeds that repo content into the adversarial-validator prompts to re-derive expected behavior, so remote git URLs are runtime dependencies that directly control the agent's instructions.