ReasoningBank with AgentDB
Warn
Audited by Snyk on Mar 1, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 0.90). The skill invokes npx agentdb@latest (which fetches and executes the remote agentdb package at runtime) — e.g. the referenced repo https://github.com/ruvnet/agentic-flow/tree/main/packages/agentdb — so it relies on and runs external code during execution.
Audit Metadata