dotnet-gha-deploy

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.80). The workflow includes GitHub Action references that are fetched and executed at runtime (for example azure/webapps-deploy@v3), meaning external code from those repositories is run as a required dependency.