remove-pdf-watermark

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). This skill invokes "pnpm dlx @pilio/cli" at runtime, which fetches and executes the @pilio/cli package from the npm registry (i.e., remote code execution via pnpm dlx of the @pilio/cli package), and the skill requires that external package to run.