sentry-ci-integration

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The example workflows fetch and execute remote code at runtime — notably the GitHub Action referenced at https://github.com/getsentry/action-release (and related getsentry/sentry-cli orb/image/npm packages) — which are pulled during CI runs and run code that controls release steps, so this is a runtime external dependency that executes remote code.