aws-security-audit

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The skill requires running external MCP servers via commands like "uvx awslabs.iam-mcp-server@latest --readonly" and "uvx awslabs.cloudtrail-mcp-server@latest" at runtime, which fetch and execute remote code the agent depends on, so they constitute runtime external dependencies that execute code.