noir

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill's installation and CI steps explicitly download and install executable code from external sources—e.g. https://github.com/owasp-noir/noir/releases/latest/download/noir-linux-x86_64 (and related GitHub repo https://github.com/owasp-noir/noir.git and container image ghcr.io/owasp-noir/noir:latest)—which fetches remote code that will be executed and is required for the skill to run.