exampass

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill includes an update workflow (/exampass update) that runs git fetch / git pull and pip install, pulling executable code from the project GitHub repository (https://github.com/WUBING2023/ExamPass-Assistant.git), so remote content can be fetched at runtime and alter/execute agent code or prompts.