ceos-delegate

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill instructs running a git pull at runtime ("git -C <ceos_root> pull --ff-only --quiet ..."), which fetches remote repository content (the CEOS repo remote URL configured as the git origin) that the skill then reads and uses to build prompts/templates, so remote content can directly control agent behavior.