agentcore-investigation

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The agent's runtime requires starting MCP servers via uvx which fetch and execute remote packages (awslabs.cloudwatch-mcp-server@latest and awslabs.cloudwatch-applicationsignals-mcp-server@latest) and the setup also clones the skill from https://github.com/awslabs/mcp.git, so remote code is fetched and executed at runtime and is required for operation.