copilotkit-nextjs-integration

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's runtime adapters (e.g., CustomLLMAdapter) make live fetch requests to external LLM endpoints such as https://custom-llm-service/api/chat (and related streaming endpoints like https://custom-llm-service/api/stream) to obtain model completions that the Copilot runtime uses to generate agent instructions and trigger tools, so these URLs are runtime dependencies that directly control agent behavior.