vector-db-ingest

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The VectorDBOperations constructor loads a HuggingFace model with model_name "nomic-ai/nomic-embed-text-v1.5" and model_kwargs{'trust_remote_code': True}, which will fetch and may execute remote code from the Hugging Face model repo (https://huggingface.co/nomic-ai/nomic-embed-text-v1.5) at runtime and is required for the skill to produce embeddings.