simplify-pr-claude

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill requires running "bunx @willbooster/agent-skills@latest simplify --agent claude", which fetches and executes the remote npm package @willbooster/agent-skills@latest at runtime (allowing that external code to control prompts or run arbitrary code), so it is a high-risk dependency.