github-actions-templates

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The workflow templates invoke external GitHub Action repositories (e.g., aquasecurity/trivy-action@master, snyk/actions/node@master, docker/build-push-action@v5, actions/checkout@v4), which are fetched at runtime by the runner and execute remote code, making them required runtime dependencies.