adr_tools

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill's install instructions run "git clone https://github.com/npryce/adr-tools.git" followed by "sudo make install", which fetches remote code and executes it as a required runtime dependency for the skill.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.70). Flags because the prompt explicitly instructs installing system software with elevated privileges (e.g., "sudo make install", apt/brew installs), which asks the agent to perform privileged, system-wide modifications.