scripting

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The CI examples download and install an executable at runtime via curl (https://github.com/acquia/cli/releases/latest/download/acli), which fetches remote code that is then executed and is required for the skill to run, meeting the flagged risk criteria.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). This skill includes instructions that modify system-level locations (e.g., installing acli to /usr/local/bin, writing logs to /var/log, and registering cron jobs), which can require elevated privileges and therefore can change the machine state and pose a security risk.