coder-convex-setup

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The docker-compose file pulls container images from ghcr.io (ghcr.io/get-convex/convex-backend:latest and ghcr.io/get-convex/convex-dashboard:latest), which are fetched at runtime and execute remote code that the skill depends on.