fusion-mcp

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The VS Code/Docker instructions in the skill explicitly pull and run the remote container image ghcr.io/equinor/fusion-poc-mcp:v1 at runtime (via docker run / GHCR login), which executes remote code and therefore constitutes a required external runtime dependency.