azure-static-web-apps

There is a pattern describing the download-and-install flow from a URL (curl|bash-like style or direct URL installation guidance) which could enable remote code execution vectors if not properly secured and pinned.