personal-context-cli-workflow

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.70). The URL points to an individual GitHub repository installed directly via pip (which can run arbitrary install-time code); although GitHub is a common host, the repo/user appears unvetted and early-stage, so it is moderately suspicious until you review the source and reputation.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill explicitly installs and relies on the external GitHub package git+https://github.com/WangLiquan/personal-context-cli.git@v0.1.1-beta which provides the personal-context CLI whose code is executed at runtime and controls the ask/relay behavior that forms prompts to models, so this is a required remote code dependency used to control prompts/execute code.