gateway-routing

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The WasmPlugin specifies an OCI URL that will be fetched at runtime to load and execute a remote Wasm module (coraza WAF) — oci://ghcr.io/corazawaf/coraza-proxy-wasm:0.6.0@sha256:... — which is a required runtime dependency that executes remote code.