uipath-flow

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The plan template (references/plan-template.html) embeds third‑party scripts that will be fetched and executed when a user opens the generated flow-plan.html (runtime), namely https://cdn.tailwindcss.com and https://cdn.jsdelivr.net/npm/mermaid@11/dist/mermaid.min.js, so the skill relies on remote code execution in the user's browser.