heimdall

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill runs git pull/git push against the memory repository at runtime (i.e., the repo's configured git remote URL — e.g., the memory repo's git remote such as git@github.com:org/repo.git or https://github.com/org/repo.git), and content fetched from that remote (notably the extraction-guide.md and other repo files) is read and passed into agent prompts, so remote content can directly control agent instructions.