build-test-suite

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill uses the Coval backend at runtime (via the coval CLI and an explicit curl to https://api.coval.dev/v1/test-cases) and explicitly fetches an agent's "prompt" with coval agents get which the skill then uses to generate/tailor test scenarios, so remote content from https://api.coval.dev can directly control prompts.