vueuse-functions

[Skill Scanner] Natural language instruction to download and install from URL detected All findings: [CRITICAL] command_injection: Natural language instruction to download and install from URL detected (CI009) [AITech 9.1.4] [HIGH] supply_chain: Download or install from free hosting/deployment platform detected (SC007) [AITech 9.1.4] [HIGH] supply_chain: Download or install from free hosting/deployment platform detected (SC007) [AITech 9.1.4] The skill fragment is benign and coherent with its stated purpose as a decision-and-implementation guide for VueUse composables in Vue.js/Nuxt projects. There are no code executions, no credential requirements, and no data flows to assess beyond static documentation. Overall security posture is appropriate for its intended function. LLM verification: The fragment is largely aligned with its stated purpose of guiding VueUse usage. The primary concern is the presence of references to external download/installation resources within the static document, which could enable unsafe runtime behavior if exploited. Absent explicit, sandboxed, and user-consented procedures for external fetches, treat the external links pattern as a supply-chain risk. Recommend restricting the fragment to self-contained guidance and removing or clearly gating any extern