react-modernization

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill's "Run React Codemods" instructions call npx jscodeshift -t https://raw.githubusercontent.com/reactjs/react-codemod/master/transforms/rename-unsafe-lifecycles.js (and other raw.githubusercontent.com transform URLs), which fetches remote script content and executes it at runtime, so this is a runtime external dependency that executes remote code.