application-inspector

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill's Docker example uses "docker pull mcr.microsoft.com/app-inspector" which at runtime fetches and executes a remote container image (remote code) required to run Application Inspector.