canary-deployment

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The Job manifest references and will pull/run the external container image "curlimages/curl:latest" at runtime (image: curlimages/curl:latest), which executes shell commands (apk add, bash /scripts/analyze.sh), meaning remote-fetched code is executed as part of the skill.