xiaohongshu-notes

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill makes runtime POST requests to a remote PostPlus API (e.g. ${POSTPLUS_API_BASE_URL:-}/api/postplus-cli/hosted/capability and /api/postplus-cli/auth/refresh resolved from POSTPLUS_API_BASE_URL or the CLI config), and the responses (hosted capability outputs) are required at runtime and can execute hosted capabilities / influence agent behavior, so this external URL is a high-confidence runtime dependency that can control prompts or execution.