julia-vibe-coding

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's setup instructs cloning and running code from https://github.com/aplavin/julia-mcp.git (git clone ... then running python server.py), which fetches and executes remote code that provides the julia-mcp runtime tools (julia_eval) used to control agent execution, so this external URL is a required runtime dependency that executes remote code.