workos-email

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). The skill explicitly performs runtime WebFetch of the WorkOS docs ("https://workos.com/docs/email" and "https://workos.com/docs/events") and instructs the agent to treat that fetched documentation as the blocking "source of truth" that must be followed, meaning external content fetched at runtime directly controls the skill's instructions.