aws-cloudformation-lambda

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The template includes CloudFormation nested stacks whose TemplateURL properties point to external HTTP S3 locations (https://s3.amazonaws.com/bucket/lambda-functions.yaml and https://s3.amazonaws.com/bucket/api-gateway.yaml) that CloudFormation will fetch at runtime and execute as templates, making them remote-executed dependencies required by the stack.