preview-mermaid

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.70). The skill declares and injects a CDN script for Mermaid (https://cdn.jsdelivr.net/npm/mermaid@10.9.0/dist/mermaid.min.js) which is fetched at runtime by the generated HTML and executes remote JavaScript that the skill requires to render diagrams.